Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.6 views

CVE-2026-25575

NavigaTUM is a website and API to search for rooms, buildings and other places. Prior to commit 86f34c7, there is a path traversal vulnerability in the proposeedits endpoint allows unauthenticated users to overwrite files in directories writable by the application user e.g., /cdn. By supplying...

8.8CVSS5.4AI score0.00444EPSS
Exploits1References1
NVD
NVD
added 2026/02/04 10:16 p.m.10 views

CVE-2026-25575

NavigaTUM is a website and API to search for rooms, buildings and other places. Prior to commit 86f34c7, there is a path traversal vulnerability in the proposeedits endpoint allows unauthenticated users to overwrite files in directories writable by the application user e.g., /cdn. By supplying...

8.8CVSS0.00444EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.10 views

PT-2026-6324

Name of the Vulnerable Software and Affected Versions NavigaTUM versions prior to commit 86f34c7 Description NavigaTUM is a website and API used for searching locations. A path traversal flaw exists in the propose edits API endpoint, allowing unauthenticated users to overwrite files in directorie...

8.8CVSS5.5AI score0.00444EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.6 views

NavigaTUM 安全漏洞

NavigaTUM is a navigation tool software developed by TUM Developers. Previous versions of NavigaTUM, such as 86f34c7, had security vulnerabilities. These vulnerabilities stemmed from the proposeedits endpoint not clearing file paths properly, which could lead to path traversal and file overwritin...

8.8CVSS5.8AI score0.00444EPSS
Exploits1References3
Rows per page
Query Builder