Lucene search
K

176 matches found

Github Security Blog
Github Security Blog
added 2026/07/02 8:38 p.m.15 views

fast-mcp-telegram: Bearer token path traversal bypasses reserved Telegram session protection

Summary fast-mcp-telegram validates HTTP Bearer tokens by joining the raw token string into a session-file path. The verifier rejects the exact reserved token telegram, but it does not reject path separators or normalize the path before checking whether the session file exists. A remote HTTP clie...

9.4CVSS6.1AI score0.00423EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/07/02 8:38 p.m.6 views

GHSA-RXW2-PC8J-VXWM fast-mcp-telegram: Bearer token path traversal bypasses reserved Telegram session protection

Summary fast-mcp-telegram validates HTTP Bearer tokens by joining the raw token string into a session-file path. The verifier rejects the exact reserved token telegram, but it does not reject path separators or normalize the path before checking whether the session file exists. A remote HTTP clie...

9.4CVSS6.1AI score0.00423EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 2:16 p.m.17 views

CVE-2019-25741

Mobatek MobaXterm 12.1 contains a structured exception handling SEH based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the...

9.8CVSS0.00638EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/04 1:22 p.m.7 views

CVE-2019-25741

Mobatek MobaXterm 12.1 contains a structured exception handling SEH based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the...

9.8CVSS6.4AI score0.00638EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 1:22 p.m.9 views

CVE-2019-25741 Mobatek MobaXterm 12.1 Buffer Overflow via Sessions File

Mobatek MobaXterm 12.1 contains a structured exception handling SEH based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the...

9.8CVSS6.4AI score0.00638EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/28 5:12 p.m.25 views

EUVD-2026-32958

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the fix for CVE-2026-33509 prevents setting storagefolder inside PKGDIR or userdir, but does NOT protect the Flask session directory /tmp/pyLoad/flask. An authenticated attacker can set storagefolder to...

8.8CVSS5.8AI score0.00529EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

UFO³ 操作系统命令注入漏洞

UFO³ is an open-source cross-device collaboration multi-agent task orchestration tool developed by Microsoft. Versions of UFO³ prior to v3.0.0 contained a vulnerability related to operating system command injection. This vulnerability stemmed from the use of ShellReceiver.runshell, which directly...

7.8CVSS6.1AI score0.01722EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/05/24 6:5 p.m.142 views

Exploit for Improper Neutralization of Null Byte or NUL Character in Wftpserver Wing_Ftp_Server

CVE-2025-47812 — Wing FTP Server Unauth RCE rewrite Python...

10CVSS7.7AI score0.95343EPSS
Exploits23
GithubExploit
GithubExploit
added 2026/05/24 4:8 p.m.100 views

Exploit for Improper Input Validation in Adobe Commerce

CVE-2025-54236 - SessionReaper Lab Ambiente Docker para demon...

9.1CVSS6.1AI score0.96742EPSS
Exploits9
GithubExploit
GithubExploit
added 2026/05/24 11:10 a.m.109 views

Exploit for Missing Authentication for Critical Function in Cpanel

CPANEL CVE EXPLOIT English | فارسی PersianREADME...

9.8CVSS6.2AI score0.981EPSS
Exploits64
OSV
OSV
added 2026/05/11 2:35 p.m.2 views

CVE-2026-7818 pgAdmin 4: Unsafe deserialization (CWE-502) in file-backed session manager leads to remote code execution

Deserialization of untrusted data CWE-502 in pgAdmin 4 FileBackedSessionManager. The session manager performed unsafe deserialization of session-file contents using Python's standard object-serialization module before performing any HMAC integrity check. Any file dropped into the sessions directo...

7.3CVSS7.7AI score0.00131EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/10 12:35 p.m.115 views

Exploit for Missing Authentication for Critical Function in Cpanel

cPanelSniper CVE-2026-41940 — c...

9.8CVSS6.2AI score0.981EPSS
Exploits64
GithubExploit
GithubExploit
added 2026/05/05 8:2 p.m.113 views

cPanelSniper-

cPanelSniper CVE-2026-41940 — c...

9.8CVSS6.2AI score0.981EPSS
Exploits64
GithubExploit
GithubExploit
added 2026/05/01 3:37 p.m.104 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940: cPanel/WHM Authentication Bypass Analysis...

9.8CVSS5.8AI score0.981EPSS
Exploits64
CVE
CVE
added 2026/05/01 1:56 p.m.23 views

CVE-2026-31718

The CVE-2026-31718 entries describe a use-after-free in ksmbd (Linux kernel in-kernel SMB3 server) triggered when a durable file handle survives a session disconnect. The root cause is an asymmetric cleanup of lock state: byte-range locks left on a freed conn->lock_list after fp->conn is nu...

9.8CVSS5.7AI score0.00356EPSS
Exploits0References5Affected Software1
GithubExploit
GithubExploit
added 2026/05/01 12:9 p.m.203 views

Exploit for Missing Authentication for Critical Function in Cpanel

cPanelSniper CVE-2026-41940 — c...

9.8CVSS5.9AI score0.981EPSS
Exploits64
GithubExploit
GithubExploit
added 2026/05/01 9:40 a.m.83 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940 Detection & Verification !License: MIThttp...

9.8CVSS5.8AI score0.981EPSS
Exploits64
Rapid7 Blog
Rapid7 Blog
added 2026/04/29 8:0 p.m.15 views

CVE-2026-41940: cPanel & WHM Authentication Bypass

Overview On April 28, 2026, cPanel issued a security update to fix a critical vulnerability affecting the cPanel & WHM and WP Squared products. In the cPanel release notes, the bug was described as "an issue with session loading and saving." CVE-2026-41940, the identifier subsequently assigned on...

9.8CVSS6.4AI score0.981EPSS
Exploits64
ATTACKERKB
ATTACKERKB
added 2026/04/07 2:38 p.m.3 views

CVE-2026-35464

pyLoad is a free and open-source download manager written in Python. The fix for CVE-2026-33509 added an ADMINONLYOPTIONS set to block non-admin users from modifying security-critical config options. The storagefolder option is not in this set and passes the existing path restriction because the...

8.8CVSS6.5AI score0.00529EPSS
Exploits2References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.5 views

CVE-2026-30711

Devome GRR v4.5.0 was discovered to contain multiple authenticated SQL injection vulnerabilities in the include/session.inc.php file via the referer and user-agent...

8.8CVSS5.9AI score0.00259EPSS
Exploits0References1
Rows per page
Query Builder