Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:21 p.m.10 views

CVE-2026-41231

Froxlor is open source server administration software. Prior to version 2.3.6, DataDump.add constructs the export destination path from user-supplied input without passing the $fixedhomedir parameter to FileDir::makeCorrectDir, bypassing the symlink validation that was added to all other...

7.5CVSS5.6AI score0.00414EPSS
Exploits1References1
CVE
CVE
added 2026/04/23 3:52 a.m.19 views

CVE-2026-41231

Froxlor prior to 2.3.6 has an incomplete symlink validation in DataDump.add() that uses user-supplied input to build the export path without passing fixed_homedir to FileDir::makeCorrectDir(), bypassing the symlink checks added elsewhere. When ExportCron runs as root, it performs chown -R on the ...

7.5CVSS5.9AI score0.00414EPSS
Exploits1References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/16 12:14 p.m.9 views

Security Bulletin: IBM QRadar Investigation Assistant app for IBM QRadar SIEM includes components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM QRadar Investigation Assistant app for IBM QRadar SIEM has addressed the applicable CVEs Vulnerability Details CVEID:CVE-2025-58754 DESCRIPTION: Axios is a...

8.7CVSS6.5AI score0.0106EPSS
Exploits1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31022

Malicious code in bioql PyPI...

8.7CVSS6.2AI score0.00516EPSS
Exploits0References3
Rows per page
Query Builder