CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Snyk•added 2026/05/07 1:23 a.m.•5 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the compressedEndpoint field in a UIPlugin deployment. An attacker can overwrite binaries or configuration files, tamper with cluster state, or write to the host node filesystem by exploiting path traversal in th...

9.3CVSS6.3AI score0.00014EPSS

Exploits0References2

Snyk•added 2026/05/07 1:23 a.m.•4 views

Directory Traversal

9.3CVSS6.3AI score0.00014EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 4:2 a.m.•3 views

SUSE CVE-2020-6797

By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user's computer. The attacker is restricted as they are unable to download non-quarantined files or supply command line arguments to the application, limiting the impact...

5.7CVSS8.8AI score0.0061EPSS

Exploits0References10

OSV•added 2020/03/02 5:15 a.m.•1 views

CVE-2020-6797

4.3CVSS7AI score0.0061EPSS

Exploits0References5

Prion•added 2020/03/02 5:15 a.m.•21 views

Code injection

4.3CVSS5.6AI score0.0061EPSS

Exploits0References5Affected Software3

AlpineLinux•added 2020/03/02 4:5 a.m.•46 views

CVE-2020-6797

4.3CVSS5.9AI score0.0061EPSS

Exploits0

Cvelist•added 2012/08/29 10:0 a.m.•17 views

CVE-2012-3975

The DOMParser component in Mozilla Firefox before 15.0, Thunderbird before 15.0, and SeaMonkey before 2.12 loads subresources during parsing of text/html data within an extension, which allows remote attackers to obtain sensitive information by providing crafted data to privileged extension code...

9AI score0.00923EPSS

Exploits0References9