EUVD-2025-11533

Malicious code in bioql PyPI...

Prestashop path traversal vulnerability (CNVD-2023-41497)

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. Prestashop 1.7.20 and previous versions of the existence of path traversal...

Design/Logic Flaw

AVEVA System Platform versions 2017 through 2020 R2 P01 uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that ca...

Design/Logic Flaw

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the StaticHandler uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '' forward slashes sequences that can resolve to a location that is outside of that directory when...

CVE-2016-5803

CVE-2016-5803 affects CA Unified Infrastructure Management (UIM) up to version 8.47. The vulnerability is a directory-traversal flaw in the path construction logic that fails to neutralize sequences like "..", allowing an attacker to access files outside the restricted directory. This is a remote...