Lucene search
+L

62 matches found

cve
cve
added 2026/07/07 8:27 p.m.15 views

CVE-2026-55633

DataEase CVE-2026-55633 affects the DataEase open-source data visualization tool prior to version 2.10.24. The issue arises from a bypass of the H2 zip protocol and file dropper fix, enabling an authenticated attacker to upload a zip archive disguised with a .ttf extension via FontManage.saveFile...

8.7CVSS6.3AI score0.00501EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/07/07 12:0 a.m.8 views

PT-2026-56251

Name of the Vulnerable Software and Affected Versions DataEase versions prior to 2.10.24 Description An authenticated attacker can bypass previous fixes for the H2 zip protocol and file dropper. By uploading a zip archive disguised with a .ttf extension via the FontManage.saveFile function, the...

8.7CVSS6.2AI score0.00501EPSS
Exploits0References8
nvd
nvd
added 2026/06/05 7:16 p.m.15 views

CVE-2026-46392

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Prior to version 26.0.0 of HAX CMS PHP, the saveFile endpoint validates upload extensions case-insensitively and writes the filename to disk verbatim, but the .htaccess rule that forces Content-Disposition: attachment on HTML...

8.7CVSS0.00223EPSS
Exploits0References1
euvd
euvd
added 2026/06/05 6:20 p.m.14 views

EUVD-2026-34883

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Prior to version 26.0.0 of HAX CMS PHP, the saveFile endpoint validates upload extensions case-insensitively and writes the filename to disk verbatim, but the .htaccess rule that forces Content-Disposition: attachment on HTML...

8.7CVSS5.5AI score0.01036EPSS
Exploits3References1
cnnvd
cnnvd
added 2026/06/05 12:0 a.m.11 views

HAX 安全漏洞

HAX is an open-source microsite managed using HAX+CMS with a PHP backend. Versions of HAX prior to 26.0.0 contained security vulnerabilities. These vulnerabilities stemmed from the saveFile endpoint’s validation mechanism, which does not distinguish between uppercase and lowercase file extensions...

8.7CVSS5.4AI score0.00223EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/03/23 6:23 p.m.3 views

CVE-2026-33647 AVideo Vulnerable to Remote Code Execution via MIME/Extension Mismatch in ImageGallery File Upload

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the ImageGallery::saveFile method validates uploaded file content using finfo MIME type detection but derives the saved filename extension from the user-supplied original filename without an allowlist check. An...

8.8CVSS5.8AI score0.00639EPSS
Exploits1References2
cnnvd
cnnvd
added 2026/03/23 12:0 a.m.11 views

WWBN AVideo 代码问题漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 26.0 contained code vulnerabilities. These vulnerabilities stemmed from a lack of extension file list checks in the ImageGallery::saveFile method, which could lead to remot...

8.8CVSS6.4AI score0.00639EPSS
Exploits1References2
nvd
nvd
added 2025/12/24 8:15 p.m.20 views

CVE-2018-25144

Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-editor.sh script that allows authenticated attackers to read, modify, or delete arbitrary files. Attackers can exploit unsanitized 'path', 'savefile', 'edit', and 'delfile' parameters to perform...

9.8CVSS0.0042EPSS
Exploits2References3
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-1159

Malware in sbrugna...

7.8CVSS7.5AI score0.0045EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2025/02/21 12:0 a.m.10 views

PT-2025-7572 · Mrcms · Mrcms

Name of the Vulnerable Software and Affected Versions: MRCMS version 3.1.2 Description: The issue allows attackers to execute arbitrary code via uploading a crafted .jsp file to the "/file/savefile.do" API endpoint. This is made possible by an arbitrary file upload vulnerability in the component...

4.8CVSS7.7AI score0.00296EPSS
Exploits1References5
cnnvd
cnnvd
added 2025/02/21 12:0 a.m.4 views

MRCMS 安全漏洞

MRCMS is a content management system by the individual developers of marker. A security vulnerability exists in MRCMS version v3.1.2, which stems from the /file/savefile.do module containing an arbitrary file upload vulnerability...

4.8CVSS6.9AI score0.00296EPSS
Exploits1References2
osv
osv
added 2024/11/22 8:15 p.m.4 views

CVE-2023-52333

Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a registration mechanism that...

7.3CVSS6.2AI score0.01854EPSS
Exploits0References2
nvd
nvd
added 2024/11/22 8:15 p.m.73 views

CVE-2023-52333

Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a registration mechanism that...

9.8CVSS0.01854EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/11/22 8:5 p.m.13 views

CVE-2023-52333 Allegra saveFile Directory Traversal Remote Code Execution Vulnerability

Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a registration mechanism that...

9.8CVSS9.9AI score0.01854EPSS
Exploits0References2
cvelist
cvelist
added 2024/11/22 8:5 p.m.23 views

CVE-2023-52333 Allegra saveFile Directory Traversal Remote Code Execution Vulnerability

Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a registration mechanism that...

9.8CVSS0.01854EPSS
Exploits0References2
cnnvd
cnnvd
added 2024/11/22 12:0 a.m.6 views

Allegra 路径遍历漏洞

Allegra is a project management software for mid-sized organizations from Allegra. A path traversal vulnerability exists in Allegra that stems from the saveFile feature containing a directory traversal remote code execution vulnerability...

9.8CVSS9.8AI score0.01854EPSS
Exploits0References2
redhatcve
redhatcve
added 2024/04/12 7:49 p.m.51 views

CVE-2024-2397

A flaw was found in tcpdump. Trying to print content from a maliciously crafted .pcap file may lead to an infinite loop, resulting in a denial of service. This issue is considered low severity; for a successful attack to happen, a user must open a crafted file, and it will only crash a single...

5.5CVSS6.1AI score0.00289EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2024/04/12 1:22 p.m.16 views

CVE-2024-2397 infinite loop in the PPP printer of tcpdump

Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLTPPPSERIAL .pcap savefile. This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21...

6.2CVSS6.9AI score0.00289EPSS
Exploits0References3
cve
cve
added 2024/04/12 1:22 p.m.75 views

CVE-2024-2397

The CVE-2024-2397 issue is a bug in tcpdump affecting the git master branch (2023-06-05 to 2024-03-21) where packet data buffers management can cause an infinite loop when parsing crafted DLT_PPP_SERIAL .pcap files in the PPP printer. The vulnerability is not reported as present in released tcpdu...

6.2CVSS6.1AI score0.00289EPSS
Exploits0References4
osv
osv
added 2024/04/12 1:22 p.m.21 views

CVE-2024-2397 infinite loop in the PPP printer of tcpdump

Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLTPPPSERIAL .pcap savefile. This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21...

6.2CVSS6.2AI score0.00289EPSS
Exploits0References6
Rows per page
Query Builder