Lucene search
K

782 matches found

Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.4 views

PT-2026-34499

Name of the Vulnerable Software and Affected Versions uutils coreutils affected versions not specified Description A flaw in the rm utility allows the bypass of safeguard mechanisms designed to protect the current directory. Although the utility prevents the deletion of . or .., it does not...

5.6CVSS6AI score0.00166EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-35363

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the rm utility of uutils coreutils allows the bypass of safeguard mechanisms intended to protect the current directory. While the utility...

5.6CVSS5.8AI score0.00166EPSS
Exploits1References3
OSV
OSV
added 2026/04/21 11:9 a.m.10 views

CLSA-2026-1776769741 rsync: Fix of 3 CVEs

CVE-2017-16548: fix heap overread in receivexattr by enforcing trailing NUL on received xattr names - CVE-2017-17434: sanitize xname in readndxandattrs and check daemon filter against fnamecmp in recvfiles - CVE-2018-5764: prevent client from resetting protectargs during the second parsearguments...

9.8CVSS6.8AI score0.06337EPSS
Exploits0References1
OSV
OSV
added 2026/04/18 12:55 a.m.2 views

GHSA-H39G-6X3C-7FQ9 Zio has SubFileSystem Path Confinement Bypass via Unresolved `..` Segment

Summary SubFileSystem fails to confine operations to its declared sub path when the input path is /../ or equivalents /../, /..\. This path passes all validation but resolves to the root of the parent filesystem, allowing directory level operations outside the intended boundary. Affected Componen...

3.8CVSS5.7AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/18 12:55 a.m.10 views

Zio has SubFileSystem Path Confinement Bypass via Unresolved `..` Segment

Summary SubFileSystem fails to confine operations to its declared sub path when the input path is /../ or equivalents /../, /..\. This path passes all validation but resolves to the root of the parent filesystem, allowing directory level operations outside the intended boundary. Affected Componen...

5.7AI score
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.23 views

Notepad++ <= 8.9.3 Stack-based Buffer Overflow (CVE-2026-5525)

The version of Notepad++ installed on the remote host is 8.9.3 or earlier. It is, therefore, affected by a stack-based buffer overflow vulnerability: - A stack-based buffer overflow exists in the file drop handler component WMDROPFILES. When a user drags and drops a directory path of exactly 259...

7.8CVSS6.1AI score0.00166EPSS
Exploits1References4
CVE
CVE
added 2026/04/13 11:51 p.m.23 views

CVE-2026-33948

CVE-2026-33948 affects jq, a command-line JSON processor. Before commit 6374ae0bcdfe33a18eb0ae6db28493b1f34a0a5b, input parsing uses strlen() on data read from files or stdin, causing truncation at the first NUL byte and validating only the prefix as JSON. This enables an attacker to craft input ...

6.3CVSS6AI score0.00256EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/10 7:50 p.m.7 views

xrootd has path traversal in directory listing that allows access to the parent directory via trailing ".." pattern

Summary A path traversal vulnerability in XRootD allows users to escape the exported directory scope and enumerate the contents of the parent directory by appending /.. specifically without trailing slash to an exported path in xrdfs ls or HTTP PROPFIND requests. This bypass ignores the all.expor...

5.9AI score
Exploits0References4Affected Software1
CVE
CVE
added 2026/04/10 7:40 a.m.149 views

CVE-2026-5525

CVE-2026-5525 affects Notepad++ up to version 8.9.3. The issue is a stack-based buffer overflow in the file drop handler (WM_DROPFILES) when dropping a directory path of exactly 259 characters without a trailing backslash. The handler appends a backslash and a null terminator without proper bound...

7.8CVSS6.2AI score0.00166EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2026/04/10 12:0 a.m.7 views

Notepad++ 安全漏洞

Notepad++ is an open-source plain-text editor developed by Don Ho of Taiwan, China. Version 8.9.3 of Notepad++ contains a security vulnerability. This vulnerability arises from the file drag-and-drop processing component, which may add slashes and empty terminators when users drag a directory pat...

6CVSS6AI score0.00166EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/09 7:23 p.m.5 views

CVE-2026-35605

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.1, the Matches function in rules/rules.go uses strings.HasPrefix without a trailing directory separator when matching paths against access rules. ...

7.5CVSS5.9AI score0.00392EPSS
Exploits1References1
Snyk
Snyk
added 2026/04/09 4:14 p.m.3 views

Unintended Proxy or Intermediary ('Confused Deputy')

Overview org.webjars.npm:axios is a promise-based HTTP client for the browser and Node.js. Affected versions of this package are vulnerable to Unintended Proxy or Intermediary 'Confused Deputy' via improper hostname normalization in the NOPROXY environment variable. An attacker controlling reques...

9.9CVSS5.7AI score0.01186EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2026/04/09 12:0 a.m.105 views

📄 Vaadin 25.x Authentication Bypass

An authentication bypass affects Vaadin versions 6.8.13, 14.x, 23.x, 24.x, and 25.x when used with Spring Security, due to inconsistent path pattern matching on reserved framework routes. Accessing the /VAADIN endpoint without a trailing slash can bypass security filters, allowing unauthenticated...

5.9AI score
Exploits0
Snyk
Snyk
added 2026/04/07 6:15 p.m.5 views

Improper Input Validation

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Improper Input Validation via the CDP discovery process. An attacker can redirect authenticated browser control to a localhost-resolving endpoint by crafting a discovery response with a...

6.9CVSS5.8AI score0.00251EPSS
Exploits0References2
OSV
OSV
added 2026/04/07 6:15 p.m.7 views

GHSA-FH32-73R9-RGH5 OpenClaw: Trailing-dot localhost CDP hosts could bypass remote loopback protections

Summary Before OpenClaw 2026.4.2, remote CDP discovery could return a trailing-dot localhost host such as localhost. and bypass OpenClaw's loopback-host normalization. That let a non-loopback remote CDP profile pivot the follow-up connection back onto localhost. Impact A hostile discovery respons...

6.9CVSS5.8AI score0.00251EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/07 6:15 p.m.10 views

OpenClaw: Trailing-dot localhost CDP hosts could bypass remote loopback protections

Summary Before OpenClaw 2026.4.2, remote CDP discovery could return a trailing-dot localhost host such as localhost. and bypass OpenClaw's loopback-host normalization. That let a non-loopback remote CDP profile pivot the follow-up connection back onto localhost. Impact A hostile discovery respons...

6.9CVSS6AI score0.00251EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/04/07 4:24 p.m.20 views

CVE-2026-35605 File Browser has an access rule bypass via HasPrefix without trailing separator in path matching

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.1, the Matches function in rules/rules.go uses strings.HasPrefix without a trailing directory separator when matching paths against access rules. ...

6.3CVSS0.00392EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.8 views

File Browser 路径遍历漏洞

File Browser is an open-source file management interface developed by File Browser. It allows for the uploading, deletion, previewing, and editing of files within a specified directory. Versions of File Browser prior to 2.63.1 contained a path traversal vulnerability. This vulnerability stemmed...

7.5CVSS5.8AI score0.00392EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/04/02 12:23 p.m.45 views

perl-YAML-Syck: YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter

Multiple security issues have been discovered in the perl YAML::Syck module. A heap overflow occurs when class names exceed the initial 512-byte allocation, a base64 decoder could read past the buffer end on trailing newlines. strtok mutated n-typeid in place, corrupting shared node data, and a...

9.1CVSS6AI score0.00429EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.5 views

CVE-2026-32052

OpenClaw versions prior to 2026.2.24 contain a command injection vulnerability in the system.run shell-wrapper that allows attackers to execute hidden commands by injecting positional argv carriers after inline shell payloads. Attackers can craft misleading approval text while executing arbitrary...

9.8CVSS6.1AI score0.00911EPSS
Exploits0References1
Rows per page
Query Builder