Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/05/14 3:2 p.m.59 views

CVE-2026-44371 Open OnDemand: Specially crafted filenames can execute javascript in the file browser

Open OnDemand is an open-source high-performance computing portal. Prior to 4.0.11, 4.1.5, and 4.2.2, specially crafted filenames can execute javascript in the file browser This vulnerability is fixed in 4.0.11, 4.1.5, and 4.2.2...

5.3CVSS0.00262EPSS
Exploits0References1
OSV
OSV
added 2024/11/05 9:9 p.m.10 views

CVE-2024-51745 Wasmtime doesn't fully sandbox all the Windows device filenames

Wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", "LPT0", "LPT1", and so on, however it did not block access to the special device filenames which use superscript digits,...

2.3CVSS6.7AI score0.00812EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/11/05 9:9 p.m.6 views

CVE-2024-51745

Wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", "LPT0", "LPT1", and so on, however it did not block access to the special device filenames which use superscript digits,...

10CVSS5.3AI score0.00812EPSS
Exploits0
OSV
OSV
added 2020/12/21 8:15 p.m.4 views

DEBIAN-CVE-2020-35605

The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message...

9.8CVSS9.2AI score0.03608EPSS
Exploits1References1
CNNVD
CNNVD
added 2020/12/21 12:0 a.m.9 views

Kovidgoyal Kitty Security Breach

Kovidgoyal Kitty is a Python-based GPU terminal emulation software by the individual developer of Kovidgoyal. The software provides basic terminal functionality and reduces system load based on GPU rendering, using OpenGL for rendering, and can be supported on Linux and Mac. A security...

9.8CVSS7.6AI score0.03608EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.21 views

Ubuntu 5.04 / 5.10 / 6.06 LTS : mailman vulnerabilities (USN-345-1)

Steve Alexander discovered that mailman did not properly handle attachments with special filenames. A remote user could exploit that to stop mail delivery until the server administrator manually cleaned these posts. CVE-2006-2941 Various cross-site scripting vulnerabilities have been reported by...

6.8CVSS5.6AI score0.06425EPSS
Exploits1References3
securityvulns
securityvulns
added 2004/09/27 12:0 a.m.24 views

Sophos Small Business Suite special DOS devices access

By using special device name as a filename it's possible to access DOS device and bypass protection...

3.4AI score
Exploits0References1Affected Software1
Rows per page
Query Builder