Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/20 7:9 p.m.5 views

CVE-2026-6257

Vvveb CMS v1.0.8.2 contains a remote code execution vulnerability in its media management functionality where a missing return statement in the file rename handler allows authenticated attackers to rename files to blocked extensions .php or .htaccess. Attackers can exploit this logic flaw by firs...

9.2CVSS6.6AI score0.00633EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/10 7:43 p.m.19 views

CVE-2026-40188 goshs is Missing Write Protection for Parametric Data Values

goshs is a SimpleHTTPServer written in Go. From 1.0.7 to before 2.0.0-beta.4, the SFTP command rename sanitizes only the source path and not the destination, so it is possible to write outside of the root directory of the SFTP. This vulnerability is fixed in 2.0.0-beta.4...

7.7CVSS0.00318EPSS
Exploits1References3
OSV
OSV
added 2026/04/10 7:43 p.m.2 views

CVE-2026-40188 goshs is Missing Write Protection for Parametric Data Values

goshs is a SimpleHTTPServer written in Go. From 1.0.7 to before 2.0.0-beta.4, the SFTP command rename sanitizes only the source path and not the destination, so it is possible to write outside of the root directory of the SFTP. This vulnerability is fixed in 2.0.0-beta.4...

7.7CVSS7.2AI score0.00318EPSS
Exploits1References5
OSV
OSV
added 2024/08/26 2:15 p.m.4 views

CVE-2024-8164

A vulnerability was determined in Chengdu Everbrite Network Technology BeikeShop up to 1.5.5. This affects the function rename of the file /Admin/Http/Controllers/FileManagerController.php. This manipulation of the argument newname causes unrestricted upload. The attack can be initiated remotely...

8.8CVSS5.4AI score0.00548EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2018/11/05 2:57 p.m.7 views

glusterfs: Files can be renamed outside volume

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume...

6.5CVSS7.3AI score0.02111EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/09/04 6:24 a.m.6 views

glusterfs: Files can be renamed outside volume

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume...

6.5CVSS7.3AI score0.02111EPSS
Exploits0References4
CNVD
CNVD
added 2018/03/26 12:0 a.m.4 views

File Renaming Vulnerability in HAIRUICMS v2.1.4 /FileManage/fsorename.asp File

HAIRUICMS HAIRUICMS is developed by HAIRUICMS based on Microsoft ASP and general ACCESS/MSSQL database. A file renaming vulnerability exists in the HAIRUICMS v2.1.4 /FileManage/fsorename.asp file. The vulnerability is caused by not filtering the file name suffix, resulting in the image can be...

6.8AI score
Exploits0
OSV
OSV
added 2015/03/04 8:47 a.m.4 views

USN-2516-3 linux vulnerabilities

USN-2516-1 fixed vulnerabilities in the Linux kernel, and the fix in USN-2516-2 was incomplete. There was an unrelated regression in the use of the virtual counter CNTVCT on arm64 architectures. This update fixes the problem. We apologize for the inconvenience. Original advisory details: A flaw w...

6.2AI score
Exploits0References2
Rows per page
Query Builder