Lucene search
K

130 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in targetcli-fb

The Open-iSCSI TargetCLI-fb version up to 2.1.52 has weak permissions for the /etc/target directory as well as for the backup directory and backup files...

5.5CVSS5.5AI score0.00335EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.10 views

PT-2026-51047

Name of the Vulnerable Software and Affected Versions py7zr version 1.1.0 Description An arbitrary file write issue exists when using the extractall function to extract an archive. The software fails to properly restrict the targets of symbolic links, allowing crafted malicious symbolic link chai...

8CVSS6.3AI score0.00404EPSS
Exploits0References11
NVD
NVD
added 2026/06/18 1:25 p.m.13 views

CVE-2026-8811

SEPPmail versions before 15.0.5 allow improper handling of attachment filenames during encrypted PDF generation. An attacker can exploit this to create new files outside the intended directory, potentially placing files in web-accessible locations...

7.1CVSS0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/18 9:5 a.m.20 views

CVE-2026-8811 Path traversal in PDF generation module

SEPPmail versions before 15.0.5 allow improper handling of attachment filenames during encrypted PDF generation. An attacker can exploit this to create new files outside the intended directory, potentially placing files in web-accessible locations...

7.1CVSS0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/12 5:33 p.m.40 views

CVE-2026-44171 MariaDB: path traversal in mbstream

MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, mbstream did not check for /../ in the path when unpacking the archive. A proper backup can never contai...

6.3CVSS0.00135EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/06/12 5:33 p.m.12 views

CVE-2026-44171

MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, mbstream did not check for /../ in the path when unpacking the archive. A proper backup can never contai...

7.8CVSS5.3AI score0.00135EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.5 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : NNCP vulnerability (USN-8359-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by a vulnerability as referenced in the USN-8359-1 advisory. It was discovered that NNCP did not properly sanitize file paths in packet data during file requesting and file saving operations. A remote...

6.4CVSS5.7AI score0.00243EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.19 views

Keras 路径遍历漏洞

Keras is an open-source deep learning framework developed by Keras. Versions of Keras prior to 3.14.0 contained a path traversal vulnerability. This vulnerability stemmed from a path traversal issue in the archive extraction tool. The functions filtersafetarinfos and filtersafezipinfos used to...

8.1CVSS7.8AI score0.00518EPSS
Exploits1References1
CVE
CVE
added 2026/05/20 7:34 p.m.18 views

CVE-2026-39405

The vulnerability CVE-2026-39405 affects Frappe LMS. In versions 2.50.0 and earlier, a user with a course editing role could upload a SCORM ZIP package that allowed writing files outside the intended directory, constituting a path traversal risk. The issue has been fixed in version 2.50.1. The av...

9.4CVSS5.7AI score0.00303EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/20 7:34 p.m.12 views

EUVD-2026-31177

Frappe Learning Management System LMS is a learning system that helps users structure their content. In versions 2.50.0 and below, a user with course editing role could upload a SCORM ZIP package to write files outside the intended directory. This issue has been resolved in version 2.50.1...

9.4CVSS5.7AI score0.00303EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.13 views

PT-2026-41960

Name of the Vulnerable Software and Affected Versions zrok affected versions not specified Description A path traversal issue exists when using the zrok2 copy command to move files from a WebDAV or zrok drive to a local filesystem. An attacker can provide a malicious DAV href containing directory...

8.3CVSS5.9AI score0.00061EPSS
Exploits0References4
OSV
OSV
added 2026/05/08 7:47 p.m.6 views

CLSA-2026-1778269628 libssh: Fix of CVE-2026-0964

CVE-2026-0964: SCP path traversal via crafted filenames in sshscppullrequest allowing files to be written outside the intended directory...

6.3CVSS5.8AI score0.00408EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/06 7:38 p.m.22 views

Directory Traversal

Overview GitPython is a python library used to interact with Git repositories Affected versions of this package are vulnerable to Directory Traversal through insufficient validation of reference paths in the creation, renaming, and deletion. An attacker can write, overwrite, move, or delete files...

9.1CVSS6.3AI score0.00419EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/04/29 8:48 p.m.7 views

CVE-2026-3087

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

7.5CVSS5.2AI score0.00531EPSS
Exploits1References1
OSV
OSV
added 2026/04/29 11:50 a.m.5 views

BIT-PYTHON-2026-3087 shutil.unpack_archive() doesn't check for Windows absolute paths in ZIPs

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

7.5CVSS5.3AI score0.00531EPSS
Exploits1References12
EUVD
EUVD
added 2026/04/27 8:46 p.m.8 views

EUVD-2026-25922

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

6CVSS5.2AI score0.00531EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/27 8:46 p.m.9 views

CVE-2026-3087 shutil.unpack_archive() doesn't check for Windows absolute paths in ZIPs

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

6CVSS5.2AI score0.00531EPSS
Exploits1References10
ATTACKERKB
ATTACKERKB
added 2026/04/27 8:46 p.m.3 views

CVE-2026-3087

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

6CVSS5.2AI score0.00531EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2026/04/27 8:46 p.m.6 views

CVE-2026-3087

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

7.5CVSS5.3AI score0.00531EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.8 views

PT-2026-35528

Name of the Vulnerable Software and Affected Versions CPython affected versions not specified Description On Windows, the shutil.unpack archive function fails to properly check for absolute paths within ZIP archives. If an archive contains a path with a drive letter e.g., C:, files may be extract...

7.5CVSS5.4AI score0.00531EPSS
Exploits1References24
Rows per page
Query Builder