CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2026/04/20 12:32 p.m.•0 views

EUVD-2026-23842

A vulnerability was detected in p2r3 convert up to 6998584ace3e11db66dff0b423612a5cf91de75b. Affected is the function Bun.serve of the file buildCache.js of the component API. Performing a manipulation of the argument pathname results in path traversal. It is possible to initiate the attack...

5.3CVSS5.4AI score0.00017EPSS

Exploits0References5

NVD•added 2026/04/20 12:16 p.m.•0 views

CVE-2026-6636

5.3CVSS0.00017EPSS

Exploits0References4

ATTACKERKB•added 2026/04/20 12:0 p.m.•2 views

CVE-2026-6636

5.3CVSS5.4AI score0.00017EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 12:12 p.m.•3 views

CVE-2018-9851

In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to read any file via a modified pathname in an Admin-Tpl request, as demonstrated by use of '|' instead of '/' as a directory separator, in conjunction with a ".." sequence...

7.5CVSS7AI score0.00374EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-21445

Malware in sbrugna...

7.5CVSS7.6AI score0.00374EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-29010

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00434EPSS

Exploits0References1

NVD•added 2022/04/04 8:15 p.m.•8 views

CVE-2021-32981

AVEVA System Platform versions 2017 through 2020 R2 P01 uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that ca...

7.2CVSS0.00237EPSS

Exploits0References2

CNNVD•added 2021/12/17 12:0 a.m.•1 views

SICK SOPAS ET 4.8.0 路径遍历漏洞

Sick Sopas Et is an engineering tool from the German company Sick. versions prior to SICK SOPAS ET 4.8.0 contain a path traversal vulnerability that could be exploited to manipulate the pathname of the emulator and use path traversal to run arbitrary executable files located on the host system...

9.3CVSS5.8AI score0.00133EPSS

Exploits0References2

CVE•added 2020/12/11 11:16 p.m.•140 views

CVE-2020-35176

AWStats vulnerability CVE-2020-35176 affects AWStats up to version 7.8, where cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting /etc), enabling directory traversal and potential filesystem access. Root cause cited as an incomplete fix for CVE-2017-1000501 and CVE-2020-29600...

5.3CVSS6.8AI score0.00937EPSS

Exploits0References4Affected Software1

Cvelist•added 2018/04/08 2:0 a.m.•10 views

CVE-2018-9851

7.5AI score0.00374EPSS

Exploits1References1

CVE•added 2008/04/11 7:0 p.m.•44 views

CVE-2008-1725

The CVE-2008-1725 entry concerns the IBiz E-Banking Integrator’s ActiveX control (IBizEBank.FIProfile.1) in fiprofile20.ocx, version 2.0.2932. The vulnerability arises from the unsafe WriteOFXDataFile method, which allows a remote attacker to overwrite arbitrary files by passing a full pathname a...

9CVSS6.8AI score0.05021EPSS

Exploits1References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by