PT-2025-27354 · Unknown · Langchain-Chatchat

Name of the Vulnerable Software and Affected Versions: Langchain-Chatchat versions up to 0.3.1 Description: A critical vulnerability has been found in Langchain-Chatchat, affecting the upload temp docs function of the /knowledge base/upload temp docs file in the Backend component. The manipulatio...

CVE-2025-6282

A vulnerability was found in xlang-ai OpenAgents up to ff2e46440699af1324eb25655b622c4a131265bb and classified as critical. Affected by this issue is the function createuploadfile of the file backend/api/file.py. The manipulation leads to path traversal. The exploit has been disclosed to the publ...

Multiple vulnerabilities in Quick Agent

Overview Quick Agent provided by SIOS Technology, Inc. is a Windows application for the following Ricoh MFPs' multifunction printers scan solutions. Quick Scan Easy FAX Speedoc Smart eco FAX Quick Agent contains multiple vulnerabilities listed below. Path traversal vulnerability in the file uploa...

Exploit for Files or Directories Accessible to External Parties in Apache Struts

Exploit CVE-2023-50164 para o Laboratório HackTheBox Descr...

CVE-2024-2221

CVE-2024-2221 affects qdrant/qdrant. The vulnerability is a path traversal and arbitrary file upload via the /collections/{COLLECTION}/snapshots/upload endpoint, exploitable through the snapshot parameter, allowing an attacker to upload and overwrite any file on the filesystem and potentially ach...