Lucene search
K

1857 matches found

Nuclei
Nuclei
added yesterday26 views

WordPress S3 Video <=0.983 - Cross-Site Scripting

WordPress S3 Video and before contains a reflected cross-site scripting vulnerability which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials...

6.1CVSS6.6AI score0.03209EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 5 days ago5 views

CVE-2026-46413

Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, regular users could route direct S3 multipart uploads through ExternalUploadManager into the admin backup store. This issue is fixed in versions 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5...

6.5CVSS5.9AI score0.00366EPSS
Exploits0References10Affected Software1
NVD
NVD
added 6 days ago7 views

CVE-2026-55873

SeaweedFS is a distributed storage system. In versions 4.08 through 4.33, requests signed with SigV4 service s3tables are routed to the S3Tables management API where authorization collapses account-less S3 identities into the shared admin account and fails open, allowing an authenticated...

4.3CVSS0.00199EPSS
Exploits0References4
EUVD
EUVD
added 6 days ago5 views

EUVD-2026-42286

SeaweedFS is a distributed storage system. In versions 4.08 through 4.33, requests signed with SigV4 service s3tables are routed to the S3Tables management API where authorization collapses account-less S3 identities into the shared admin account and fails open, allowing an authenticated...

4.3CVSS5.9AI score0.00199EPSS
Exploits0References4
CVE
CVE
added 6 days ago14 views

CVE-2026-55874

SeaweedFS's S3 API gateway is affected prior to version 4.34 by a path traversal issue in the X-Amz-Copy-Source header (dot-dot segments) that can enable an authenticated user scoped to one bucket to read objects from other buckets via server-side copy. The issue is documented across CVE-2026-558...

7.7CVSS6AI score0.00327EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/07/07 3:13 a.m.30 views

CVE-2026-42147 Coolify: SSRF via S3 Storage Endpoint in testConnection()

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.474, S3 storage endpoint validation only checks URL format and testConnection sends a server-side request to the configured endpoint, allowing an authenticated user with storage...

4.9CVSS0.00255EPSS
Exploits0References3
Chainguard
Chainguard
added 2026/07/03 8:22 p.m.11 views

CVE-2026-50185 vulnerabilities

Vulnerabilities for packages: deno, mountpoint-s3, apollo-router, yazi, komodo, pixi...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/03 8:22 p.m.15 views

GHSA-3RJW-M598-PQ24 vulnerabilities

Vulnerabilities for packages: deno, mountpoint-s3, apollo-router, yazi, komodo, pixi...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/03 8:22 p.m.13 views

CVE-2026-50185 vulnerabilities

Vulnerabilities for packages: yazi, mountpoint-s3, pixi, deno...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/03 8:22 p.m.14 views

GHSA-3RJW-M598-PQ24 vulnerabilities

Vulnerabilities for packages: yazi, mountpoint-s3, pixi, deno...

6.1AI score
Exploits0
Fedora
Fedora
added 2026/07/02 1:12 a.m.9 views

[SECURITY] Fedora 43 Update: rclone-1.74.3-1.fc43

"rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Driv e, Swift, Hubic, Wasabi, Google Cloud Storage, Azure Blob, Azure Files, Yandex Files...

9.1CVSS6.3AI score0.00533EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.9 views

PT-2026-53930

Name of the Vulnerable Software and Affected Versions SeaweedFS versions prior to 4.34 Description A path traversal issue exists in the S3 gateway DeleteMultipleObjectsHandler. Authenticated S3 principals with write access to one bucket can delete arbitrary objects in buckets belonging to other...

8.1CVSS6AI score0.00766EPSS
Exploits0References10
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/29 5:25 a.m.8 views

Malicious code in yastatic-s3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6abc47a32b453ee0a12ea33e7512ccdea60ed1868839e952cbeedaccd002a06 Package name mimics Yandex's yastatic static-asset namespace. On install, postinstall.js performs an unconditional plain-HTTP GET to a hardcoded...

6.2AI score
Exploits0References3
OSV
OSV
added 2026/06/29 5:25 a.m.5 views

MAL-2026-6586 Malicious code in yastatic-s3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6abc47a32b453ee0a12ea33e7512ccdea60ed1868839e952cbeedaccd002a06 Package name mimics Yandex's yastatic static-asset namespace. On install, postinstall.js performs an unconditional plain-HTTP GET to a hardcoded...

6.3AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:41 p.m.9 views

CVE-2026-50137

Budibase is an open-source low-code platform. Prior to 3.39.0, an anonymous attacker who knows or can enumerate a workspace id app... and an S3-source datasource id ds... can call this endpoint with no auth and obtain a 15-minute pre-signed PUT URL minted on the victim's IAM identity. The endpoin...

9.4CVSS5.8AI score0.00415EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/06/26 8:36 p.m.26 views

CVE-2026-50136 Budibase: Unauthenticated S3 signed upload URL generation allows arbitrary writes with stored datasource credentials

Budibase is an open-source low-code platform. Prior to 3.39.3, the application server exposes an unauthenticated endpoint that generates S3 PutObject presigned URLs using credentials stored in a workspace datasource. The route is protected only by the recaptcha middleware and does not require...

7.4CVSS0.0029EPSS
Exploits1References1
OSV
OSV
added 2026/06/26 5:2 p.m.4 views

GHSA-XV9W-7V6Q-HPJH fluent-plugin-s3 Vulnerable to Denial of Service (DoS) via Decompression Bomb in `in_s3`

The fluent-plugin-s3 plugin specifically the ins3 input plugin supports reading and decompressing heavily compressed files such as gzip, lzma2, and lzop from Amazon S3. It was discovered that the plugin read the entire decompressed payload into memory at once without enforcing a strict size limit...

2.7CVSS5.8AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/25 6:41 p.m.14 views

CVE-2026-54917

SeaweedFS is a distributed storage system for object storage S3, file systems, and Iceberg tables. Prior to 4.30, the S3 API gateway and the Iceberg REST catalog gateway construct their routers with mux.NewRouter.SkipCleantrue. With path cleaning disabled, a .. segment inside the URL survives...

7.8CVSS5.9AI score0.00345EPSS
Exploits1References3Affected Software1
Snyk
Snyk
added 2026/06/23 11:11 p.m.4 views

Missing Authorization

Overview snipe/snipe-it is an asset management system built on Laravel. Affected versions of this package are vulnerable to Missing Authorization in the process that retrieves S3 signature images. An attacker can access temporary signed S3 URLs for signature images by knowing the filename, allowi...

5.3CVSS5.8AI score0.00281EPSS
Exploits0References2
CVE
CVE
added 2026/06/23 4:31 p.m.16 views

CVE-2026-48520

CVE-2026-48520 (Langflow) : Multiple sources confirm a vulnerability in the Shareable Playground/Public Flows feature prior to Langflow 1.10.0. An unauthenticated user can trigger public flow execution and supply a files list to the /api/v1/build_public_tmp endpoint, causing Langflow to read arbi...

6.1CVSS6.1AI score0.00269EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder