Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

NVD
NVDadded 2026/02/26 1:16 a.m.6 views

CVE-2026-27884

NetExec is a network execution tool. Prior to version 1.5.1, the module spiderplus improperly creates the output file and folder path when saving files from SMB shares. It does not take into account that it is possible for Linux SMB shares to have path traversal characters such as ../ in them. An...

5.3CVSS0.00329EPSS
Exploits0References4
CVE
CVEadded 2026/02/26 12:39 a.m.12 views

CVE-2026-27884

CVE-2026-27884 affects NetExec’s spider_plus module prior to version 1.5.1, where saving files from SMB shares could be manipulated due to path traversal characters like ../ in SMB paths. An attacker could craft a filename in an SMB share that, when spider_plus crawls and downloads, writes or ove...

5.3CVSS6AI score0.00329EPSS
Exploits0References4
OSV
OSVadded 2026/02/26 12:39 a.m.4 views

CVE-2026-27884 NetExec vulnerable to arbitrary file write via path traversal in spider_plus module

NetExec is a network execution tool. Prior to version 1.5.1, the module spiderplus improperly creates the output file and folder path when saving files from SMB shares. It does not take into account that it is possible for Linux SMB shares to have path traversal characters such as ../ in them. An...

5.3CVSS6.2AI score0.00329EPSS
Exploits0References6
Rows per page
Query Builder