Lucene search
K

715 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/27 9:27 a.m.9 views

CVE-2025-0898

The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Arbitrary File Reading in all versions up to, and including, 1.4.7 via the Draw SVG widget. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on...

6.5CVSS5.9AI score0.00281EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/26 5:39 a.m.14 views

rsync: rsync server leaks arbitrary client files

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...

6.8CVSS7.1AI score0.01761EPSS
Exploits1References5
EUVD
EUVD
added 2026/05/25 2:45 p.m.13 views

EUVD-2026-31697

A vulnerability was identified in debugmcp mcp-debugger up to 0.20.0. Impacted is the function handleGetSourceContext of the file src/server.ts. The manipulation leads to path traversal. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The...

5.3CVSS5.5AI score0.00438EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.11 views

mcp-debugger 路径遍历漏洞

mcp-debugger is debugmcp open source a multi-language debugging tool . debugmcp mcp-debugger 0.20.0 and earlier versions of the path traversal vulnerability , the vulnerability stems from the operation of the parameters of the function handleGetSourceContext in the file src/server.ts , which may...

5.3CVSS5.8AI score0.00438EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.14 views

Trilium Notes 路径遍历漏洞

Trilium Notes is a hierarchical note application developed by Zadam’s individual developer. It focuses on building large personal knowledge bases. Versions of Trilium Notes prior to 0.102.1 contained a path traversal vulnerability. This vulnerability originated from local files and could allow...

6.8CVSS5.9AI score0.00621EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/19 11:32 p.m.11 views

CVE-2026-35593 Trilium Notes has Local File Inclusion via upload modified file API endpoint

Trilium Notes is an open-source, cross-platform hierarchical note taking application for building large personal knowledge bases. Versions 0.102.1 and prior are vulnerable to Local File Inclusion, allowing an authenticated attacker to read sensitive arbitrary files from the server's filesystem. T...

6.8CVSS6.5AI score0.00621EPSS
Exploits0References2
OSV
OSV
added 2026/05/19 4:25 p.m.8 views

GHSA-W4QQ-74H6-58WQ AVideo: Unauthenticated Arbitrary Image Read via Path Traversal in `view/img/image404Raw.php`

Summary The endpoint requires no authentication. An unauthenticated remote attacker can read arbitrary image files anywhere on disk that the PHP user can open — including private user-profile photos that the application's normal serving wrappers gate behind ACLs, admin-uploaded thumbnails,...

6.9CVSS6AI score0.00455EPSS
Exploits1References3
OSV
OSV
added 2026/05/19 9:24 a.m.4 views

CVE-2026-46724 Path Traversal in extension "Faceted Search" (ke_search)

The file indexer does not normalize the configured directory path. A backend user with permission to edit indexer configurations can index documents from arbitrary locations on the server file system through path traversal sequences...

5.9CVSS6.1AI score0.00404EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/19 9:24 a.m.10 views

CVE-2026-46724 Path Traversal in extension "Faceted Search" (ke_search)

The file indexer does not normalize the configured directory path. A backend user with permission to edit indexer configurations can index documents from arbitrary locations on the server file system through path traversal sequences...

5.9CVSS5.9AI score0.00404EPSS
Exploits0References1
CVE
CVE
added 2026/05/19 9:24 a.m.21 views

CVE-2026-46724

CVE-2026-46724 affects the Typo3 extension Faceted Search (ke_search). The file indexer does not normalize the configured directory path, allowing a backend user with permission to edit indexer configurations to index documents from arbitrary server file-system locations via path traversal. CVSS ...

5.9CVSS5.9AI score0.00404EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.11 views

TYPO3 Extension Faceted Search 路径遍历漏洞

TYPO3 Extension Faceted Search is an open-source extension for TYPO3 that enables faceted search. TYPO3 Extension Faceted Search has a path traversal vulnerability. This vulnerability stems from the fact that the file indexer does not normalize the configured directory paths. As a result, backend...

5.9CVSS5.8AI score0.00404EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/18 7:1 p.m.16 views

AVideo: Authenticated Arbitrary File Read in view/update.php

Summary view/update.php reads $POST'updateFile' as a relative path under updatedb/ and passes it to PHP's file for line-by-line execution as part of a database migration. An authenticated administrator can abuse this to read arbitrary text files reachable from the web-server process — especially...

6.9CVSS6.1AI score0.00469EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/18 1:57 a.m.13 views

CVE-2024-39847

Unauthenticated attackers can exploit a weakness in the XML parser functionality of the SOAP endpoints in 4D server. This allows them to obtain read access to files on the application server and adjacent network shares, and perform HTTP GET requests to arbitrary services...

8.7CVSS6AI score0.00447EPSS
Exploits2References1
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.12 views

Open WebUI 路径遍历漏洞

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted WebUI that is open source. Versions of Open WebUI prior to 0.1.124 contained a path traversal vulnerability. This vulnerability occurred when files were attached in messages, where the file names originated from the original...

9.8CVSS5.8AI score0.00336EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/05/14 8:8 p.m.32 views

CVE-2026-44647 OneDev: Path Traversal (read capability via Git LFS pointer resolution)

OneDev is a Git server with CI/CD, kanban, and packages. Prior to 15.0.2, there is behavior that breaks the expected boundary between repository-controlled LFS metadata and server-local filesystem paths. A repository object can steer raw blob reads to arbitrary local files that the server account...

7.1CVSS0.00319EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/14 8:8 p.m.11 views

CVE-2026-44647 OneDev: Path Traversal (read capability via Git LFS pointer resolution)

OneDev is a Git server with CI/CD, kanban, and packages. Prior to 15.0.2, there is behavior that breaks the expected boundary between repository-controlled LFS metadata and server-local filesystem paths. A repository object can steer raw blob reads to arbitrary local files that the server account...

7.1CVSS5.9AI score0.00319EPSS
Exploits0References1
NVD
NVD
added 2026/05/14 7:16 a.m.30 views

CVE-2026-3892

The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to arbitrary file deletion in all versions up to, and including, 1.4.107. This is due to insufficient file path validation in the become-dealer logo upload flow. The plugin allows any authenticated user to...

8.1CVSS0.00256EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/11 9:31 p.m.21 views

EUVD-2026-29180

A vulnerability in the createmodelversion handler of mlflow/server/handlers.py in mlflow/mlflow versions 3.9.0 and earlier allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem. The issue arises when a CreateModelVersion request includes the tag...

7.5CVSS7.3AI score0.00712EPSS
Exploits1References3
OSV
OSV
added 2026/05/08 3:36 p.m.17 views

CLSA-2026-1778254552 httpd: Fix of 8 CVEs

CVE-2026-24072: modrewrite/modsetenvif: use APEXPRFLAGRESTRICTED in htaccess to prevent reading server-side files via apexpr from .htaccess - CVE-2026-29169: moddavlock: NULL pointer dereference in davgenericrefreshlocks use dpscan instead of dp - CVE-2026-33006: modauthdigest: timing attack —...

8.8CVSS5.8AI score0.00654EPSS
Exploits2References1
OSV
OSV
added 2026/05/08 10:35 a.m.13 views

CLSA-2026-1778236507 rsync: Fix of 3 CVEs

CVE-2025-10158: fix invalid access to files array in sender - CVE-2024-12747: fix symlink race condition in sender - CVE-2024-12086: fix server leak of arbitrary client files via crafted checksums and fuzzy basis...

6.8CVSS5.9AI score0.01761EPSS
Exploits1References1
Rows per page
Query Builder