Lucene search
+L

35 matches found

euvd
euvd
added 2 days ago6 views

EUVD-2026-44688

Cloudreve is a self-hosted file management and sharing system. Prior to 4.16.1, a Cloudreve WebDAV account rooted at a configured folder can send paths such as /dav/%2e%2e/outside.txt because stripPrefix in pkg/webdav/webdav.go joins the decoded request suffix to the account root with...

7.1CVSS6.1AI score0.00186EPSS
Exploits0References1
osv
osv
added 2026/06/30 6:36 p.m.5 views

GHSA-85JM-CWP2-MVPV CefSharp.Common: `FolderSchemeHandlerFactory` path boundary check can expose files outside the configured root folder

Summary FolderSchemeHandlerFactory was intended to restrict served files to a configured rootFolder, but its path validation used a raw string prefix check. A request could escape to a sibling directory whose full path starts with the root folder path, allowing files outside the configured root t...

5.3CVSS5.8AI score
Exploits0References2
veeam
veeam
added 2026/02/19 12:0 a.m.17 views

Hardened Repository error: "veeam-grp-backup group has no rights on the backup folder"

Challenge When editing the properties of a Hardened Repository that has been upgraded to Veeam Hardened Repository version 13 for Veeam Backup & Replication 13 using the Veeam Infrastructure Appliance ISO, and was originally created using the Veeam Hardened Repository ISO version 2.0 for Veeam...

5.6AI score
Exploits0Affected Software1
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1168

Malware in sbrugna...

4.6CVSS6.4AI score0.01887EPSS
Exploits0References4
cnvd
cnvd
added 2025/06/06 12:0 a.m.2 views

FreeScout Security Bypass Vulnerability (CNVD-2025-20796)

FreeScout is an ultra-lightweight free open source helpdesk and shared inbox built using PHP Laravel framework by FreeScout. FreeScout suffers from a security bypass vulnerability that is caused by incorrect configuration of the root folder of the object Storage. An attacker could exploit the...

7CVSS6.9AI score0.0027EPSS
Exploits1References1
nvd
nvd
added 2024/06/28 12:15 p.m.43 views

CVE-2024-5735

Full Path Disclosure vulnerability in AdmirorFrames Joomla! extension in afHelper.php script allows an unauthorised attacker to retrieve location of web root folder. This issue affects AdmirorFrames: before 5.0...

7.5CVSS0.01515EPSS
Exploits2References5
cvelist
cvelist
added 2024/06/28 11:24 a.m.54 views

CVE-2024-5735 Full Path Disclosure in AdmirorFrames Joomla! Extension

Full Path Disclosure vulnerability in AdmirorFrames Joomla! extension in afHelper.php script allows an unauthorised attacker to retrieve location of web root folder. This issue affects AdmirorFrames: before 5.0...

6.3CVSS0.01515EPSS
Exploits2References5
vulnrichment
vulnrichment
added 2024/06/28 11:24 a.m.20 views

CVE-2024-5735 Full Path Disclosure in AdmirorFrames Joomla! Extension

Full Path Disclosure vulnerability in AdmirorFrames Joomla! extension in afHelper.php script allows an unauthorised attacker to retrieve location of web root folder. This issue affects AdmirorFrames: before 5.0...

6.3CVSS6.8AI score0.01515EPSS
Exploits2References5
osv
osv
added 2024/06/27 9:32 p.m.40 views

GHSA-9CHM-M6X2-6FVC lollms vulnerable to path traversal due to unauthenticated root folder settings change

A path traversal vulnerability exists in the XTTS server included in the lollms package, version v9.6. This vulnerability arises from the ability to perform an unauthenticated root folder settings change. Although the read file endpoint is protected against path traversals, this protection can be...

8.6CVSS8.7AI score0.00644EPSS
Exploits0References3
github
github
added 2024/06/27 9:32 p.m.23 views

lollms vulnerable to path traversal due to unauthenticated root folder settings change

A path traversal vulnerability exists in the XTTS server included in the lollms package, version v9.6. This vulnerability arises from the ability to perform an unauthenticated root folder settings change. Although the read file endpoint is protected against path traversals, this protection can be...

8.6CVSS7AI score0.00644EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2024/06/27 7:15 p.m.35 views

CVE-2024-6085

A path traversal vulnerability exists in the XTTS server included in the lollms package, version v9.6. This vulnerability arises from the ability to perform an unauthenticated root folder settings change. Although the read file endpoint is protected against path traversals, this protection can be...

8.6CVSS0.00644EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/05/14 12:0 a.m.4 views

General Electric Healthcare Ultrasound 路径遍历漏洞

GE General Electric Healthcare Ultrasound is a medical sonic detection device from General Electric GE. A path traversal vulnerability exists in General Electric Healthcare Ultrasound. An attacker could exploit this vulnerability to access files and directories stored outside of the web root fold...

6.2CVSS6.8AI score0.00283EPSS
Exploits0References3
huntr
huntr
added 2021/10/09 5:8 p.m.29 views

in bookstackapp/bookstack

Description The dompdf chroot option in Bookstack App is set to basepath, which is the Laravel root folder /var/www/bookstack. An attacker can hence load any image file in the Laravel folder /var/www/bookstack or its subdirectories via PDF exports. Proof of Concept 1: Place an image file in...

0.4AI score
Exploits0
cnvd
cnvd
added 2021/07/09 12:0 a.m.37 views

WordPress Media File Organizer plugin directory traversal vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A directory traversal vulnerability exists in version 1.0.1 of the Media File Organizer plugin for...

8.6CVSS8.7AI score0.01998EPSS
Exploits0References1
nvd
nvd
added 2021/07/07 2:15 p.m.25 views

CVE-2020-24143

Directory traversal in the Video Downloader for TikTok aka downloader-tiktok plugin 1.3 for WordPress lets an attacker get access to files that are stored outside the web root folder via the njt-tk-download-video parameter...

7.5CVSS0.01967EPSS
Exploits0References1
cvelist
cvelist
added 2021/07/07 1:37 p.m.23 views

CVE-2020-24144

Directory traversal in the Media File Organizer aka media-file-organizer plugin 1.0.1 for WordPress lets an attacker get access to files that are stored outside the web root folder via the items parameter in a move operation...

8.6AI score0.01998EPSS
Exploits0References2
osv
osv
added 2020/09/02 9:46 p.m.10 views

GHSA-8HQ2-FCQM-39HQ Malicious Package in rimrafall

Version 1.0.0 of rimrafall contains malicious code as a preinstall script. The package attempts to remove all files in the system's root folder. Recommendation If you installed this package it is likely your machine was erased. If not, remove the package from your system and verify if any files...

9.8CVSS7.2AI score
Exploits0References1
zdt
zdt
added 2020/06/12 12:0 a.m.130 views

SmarterMail 16 - Arbitrary File Upload Exploit

Exploit for multiple platform in category web applications Exploit Title: SmarterMail 16 - Arbitrary File Upload Google Dork: inurl:/interface/root Exploit Author: vvhack.org Vendor Homepage: https://www.smartertools.com Software Link: https://www.smartertools.com Version: 16.x Tested on: Windows...

7.4AI score
Exploits0
osv
osv
added 2020/05/04 7:15 p.m.7 views

CVE-2020-5343

Dell Client platforms restored using a Dell OS recovery image downloaded before December 20, 2019, may contain an insecure inherited permissions vulnerability. A local authenticated malicious user with low privileges could exploit this vulnerability to gain unauthorized access on the root folder...

7.8CVSS7.1AI score0.00273EPSS
Exploits0References1
prion
prion
added 2020/03/19 6:15 p.m.18 views

Directory traversal

NETSAS Enigma NMS 65.0.0 and prior suffers from a directory traversal vulnerability that can allow an authenticated user to access files and directories stored outside of the web root folder. By exploiting this vulnerability, it is possible for an attacker to list operating-system directory...

5.5CVSS9AI score0.01306EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder