Lucene search
K

10 matches found

CVE
CVE
added 2026/06/26 8:32 p.m.23 views

CVE-2026-54352

Budibase has a high-severity arcane file-read issue via the PWA ZIP upload endpoint. Prior to 3.39.9, a workspace-builder could upload a ZIP containing a symlink to a root-available file (for example, /data/.env or /etc/shadow) and, because extract-zip preserves absolute targets and the icon vali...

9.6CVSS5.8AI score0.00494EPSS
Exploits1References1Affected Software1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Firefox

Uploading files that contain symlinks may have allowed an attacker to trick a user into submitting sensitive data to a malicious website. This vulnerability affects Firefox 115...

6.5CVSS6.9AI score0.00596EPSS
Exploits1References2
OSV
OSV
added 2026/02/20 11:16 p.m.5 views

CVE-2026-2490

RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of RustDesk Client for Windows. An attacker must first obtain the ability to execute low-privileged...

5.5CVSS5.9AI score0.00319EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2025/08/12 12:0 a.m.91 views

📄 Ghost CMS 5.59.1 Arbitrary File Read

Ghost CMS version 5.59.1 proof of concept arbitrary file read exploit. !/usr/bin/env python3 -- coding: utf-8 -- """ Exploit Title: Ghost CMS 5.59.1 - Arbitrary File Read Date: 2023-09-20 Exploit Author: ibrahimsql https://github.com/ibrahmsql Vendor Homepage: https://ghost.org Software Link:...

6.5CVSS7.4AI score0.57565EPSS
Exploits12
Exploit DB
Exploit DB
added 2025/08/11 12:0 a.m.267 views

Ghost CMS 5.59.1 - Arbitrary File Read

!/usr/bin/env python3 -- coding: utf-8 -- """ Exploit Title: Ghost CMS 5.59.1 - Arbitrary File Read Date: 2023-09-20 Exploit Author: ibrahimsql https://github.com/ibrahmsql Vendor Homepage: https://ghost.org Software Link: https://github.com/TryGhost/Ghost Version: =2.28.1, zipfile, tempfile Usag...

6.5CVSS7.4AI score0.57565EPSS
Exploits12
Packet Storm
Packet Storm
added 2025/03/04 12:0 a.m.226 views

Ghost CMS 5.59.1 Arbitrary File Read

Ghost CMS version 5.59.1 proof of concept arbitrary file reading exploit. ============================================================================================================================================= | Title : Ghost CMS v 5.59.1 PHP Code Injection Vulnerability | | Author :...

6.5CVSS7.1AI score0.57565EPSS
Exploits12
GithubExploit
GithubExploit
added 2025/01/20 10:1 p.m.685 views

Exploit for Path Traversal in Ghost

CVE-2023-40028: Ghost CMS Arbitrary File Read Description...

6.5CVSS6.5AI score0.57565EPSS
Exploits12
GithubExploit
GithubExploit
added 2025/01/13 9:47 a.m.506 views

Exploit for CVE-2024-50404

CVE-2024-50404 - https://www.qnap.com/en/security-advisory/qsa...

6.8CVSS6.6AI score0.01394EPSS
Exploits2
GithubExploit
GithubExploit
added 2024/12/28 9:17 p.m.745 views

Exploit for Path Traversal in Ghost

CVE-2023-40028 PoC Exploit Symlink Upload Vulnerability in Gho...

6.5CVSS6.3AI score0.57565EPSS
Exploits12
GithubExploit
GithubExploit
added 2024/03/23 3:25 p.m.762 views

Exploit for Path Traversal in Ghost

CVE-2023-40028 Proof of Concept This repository contains a pr...

6.5CVSS6.4AI score0.57565EPSS
Exploits12
Rows per page
Query Builder