Lucene search
K

9 matches found

CVE
CVE
added 2026/07/02 8:4 p.m.24 views

CVE-2026-58467

Cockpit CMS prior to release 364 is affected by a path traversal and local file inclusion vulnerability. Unauthenticated attackers can craft a request (via the URL’s PATH_INFO in REQUEST_URI) to reach arbitrary files; if the resolved path ends with .php, it may be passed to include(), enabling lo...

8.2CVSS6.1AI score0.00406EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.7 views

CVE-2026-23292

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix recursive locking in configfsopenfile In flushwritebuffer, &p-fragsem is acquired and then the loaded store function is called, which, here, is targetcoreitemdbrootstore. This function called filpopen, following...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-5121

Malware in sbrugna...

10CVSS6.4AI score0.01267EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/08/30 1:46 p.m.9 views

CVE-2009-20011 ContentKeeper Web Appliance < 125.10 RCE via mimencode

ContentKeeper Web Appliance now maintained by Impero Software versions prior to 125.10 are vulnerable to remote command execution due to insecure handling of file uploads via the mimencode CGI utility. The vulnerability allows unauthenticated attackers to upload and execute arbitrary scripts as t...

10CVSS0.01267EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ext4: Remove ppath from ext4extreplayupdateex to avoid double-free. When calling ext4forcesplitextentat&ppath in ext4extreplayupdateex, ppath is updated, but it is path that is freed. This potentially triggers a double-free in th...

7.8CVSS6.2AI score0.00249EPSS
Exploits0References3
OSV
OSV
added 2024/10/21 6:15 p.m.11 views

UBUNTU-CVE-2024-49983

In the Linux kernel, the following vulnerability has been resolved: ext4: drop ppath from ext4extreplayupdateex to avoid double-free When calling ext4forcesplitextentat in ext4extreplayupdateex, the 'ppath' is updated but it is the 'path' that is freed, thus potentially triggering a double-free i...

7.8CVSS6.2AI score0.00249EPSS
Exploits0References32
OSV
OSV
added 2024/01/16 9:38 a.m.5 views

MGASA-2024-0013 Updated hplip packages fix security vulnerabilities

There were security issues in hplip's hpps program due to fixed /tmp path usage in prnt/hpps/hppsfilter.c This update fixes these issues...

7.3AI score
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/29 10:40 a.m.3 views

jenkins: Agent-to-controller access control allowed writing to sensitive directory used by Pipeline: Shared Groovy Libraries Plugin

An incorrect permissions validation vulnerability was found in Jenkins. An agent process read/write access to the libs/ directory inside build directories when using the FilePath APIs is not limited. This allows attackers in control of agent processes to replace the code of a trusted library with...

9.8CVSS6.1AI score0.0232EPSS
Exploits0References5
securityvulns
securityvulns
added 2003/06/14 12:0 a.m.36 views

SRT2003-06-13-0945 - Progress PATH based dlopen&#40;&#41; issue

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

7AI score
Exploits0
Rows per page
Query Builder