Lucene search
K

500 matches found

Nuclei
Nuclei
added yesterday29 views

PyTorch TorchServe SSRF

TorchServe is a tool for serving and scaling PyTorch models in production. TorchServe default configuration lacks proper input validation, enabling third parties to invoke remote HTTP download requests and write files to the disk. This issue could be taken advantage of to compromise the integrity...

10CVSS7.4AI score0.35256EPSS
Exploits6References3
CVE
CVE
added 2026/06/15 12:0 p.m.12 views

CVE-2018-25436

The CVE concerns the WordPress plugin Baggage Freight Shipping Australia version 0.1.0, where an unrestricted file upload vulnerability exists via the upload-package.php endpoint. Unauthenticated attackers can submit POST requests with malicious file extensions, and the handler moves files to the...

9.8CVSS6.1AI score0.00661EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/15 12:0 p.m.7 views

EUVD-2018-21958

WordPress Plugin Baggage Freight Shipping Australia 0.1.0 contains an unrestricted file upload vulnerability that allows unauthenticated attackers to upload arbitrary files by exploiting the upload-package.php endpoint. Attackers can submit POST requests with malicious file extensions to the uplo...

9.8CVSS6AI score0.00661EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:36 p.m.8 views

CVE-2026-41173

The AWS X-Ray Remote Sampler package provides a sampler which can get sampling configurations from AWS X-Ray. Prior to 0.1.0-alpha.8, OpenTelemetry.Sampler.AWS reads unbounded HTTP response bodies from a configured AWS X-Ray remote sampling endpoint into memory. AWSXRaySamplerClient.DoRequestAsyn...

5.9CVSS5.6AI score0.00301EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/01 6:4 p.m.10 views

CVE-2026-43623 microtar 0.1.0 Stack-Based Buffer Overflow via raw_to_header()

microtar through 0.1.0 contains a stack-based buffer overflow vulnerability in the rawtoheader function in src/microtar.c that allows attackers to corrupt adjacent stack memory by supplying a crafted TAR archive with non-null-terminated name or linkname fields. The function uses strcpy to copy...

8.8CVSS6AI score0.00318EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/01 5:0 p.m.12 views

EUVD-2026-33712

A vulnerability has been found in hekmon8 Jenkins-server-mcp 0.1.0. This vulnerability affects the function jobPath of the file src/index.ts of the component getbuildstatus/getbuildlog/triggerbuild. Such manipulation leads to server-side request forgery. The attack may be performed from remote. T...

6.5CVSS6.1AI score0.0027EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.10 views

microtar 安全漏洞

microtar is a lightweight ANSI C language tar library developed by rxi’s individual developers. Versions of microtar 0.1.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the rawtoheader function using strcpy to copy fields in the ustar format that are not empty...

8.8CVSS5.4AI score0.00318EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.7 views

Jenkins Server MCP 代码问题漏洞

Jenkins Server MCP is a model context protocol server developed by Hekmon for individual developers to interact with Jenkins CI/CD servers. Version 0.1.0 of Jenkins Server MCP contains code vulnerabilities. These vulnerabilities stem from incorrect operations in the functions jobPath of the files...

6.5CVSS6.5AI score0.0027EPSS
Exploits0References6
NVD
NVD
added 2026/05/12 8:16 p.m.11 views

CVE-2026-44218

ciguard is a static security auditor for CI/CD pipelines. From 0.1.0 to 0.8.1, the published ghcr.io/jo-jo98/ciguard container image inherits the default root user because the Dockerfile lacks a USER directive. This vulnerability is fixed in 0.8.2...

3CVSS0.00122EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-39150

Name of the Vulnerable Software and Affected Versions fohrloop dash-uploader versions 0.1.0 through 0.7.0a2 Description A directory traversal issue allows a remote attacker to execute arbitrary code. This is possible through the dash uploader/httprequesthandler.py component, specifically within t...

10CVSS6.1AI score0.05982EPSS
Exploits4References21
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.8 views

PT-2026-36757

Name of the Vulnerable Software and Affected Versions ryanjoachim mcp-rtfm version 0.1.0 Description A path traversal issue exists in the MCP Interface component. A remote attacker can manipulate the docFile argument within the get doc content, read doc, and update doc functions to access or modi...

6.5CVSS6.6AI score0.00294EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/05/02 12:0 a.m.8 views

PT-2026-36624

A vulnerability was detected in pskill9 website-downloader up to 0.1.0. This affects the function download website of the file src/index.ts of the component MCP Interface. Performing a manipulation of the argument outputPath results in os command injection. The attack may be initiated remotely. T...

6.5CVSS6.4AI score0.0134EPSS
Exploits0References7
NVD
NVD
added 2026/05/01 9:16 p.m.4 views

CVE-2026-7593

A security vulnerability has been detected in Sunwood-ai-labs command-executor-mcp-server up to 0.1.0. This impacts the function executecommand of the file src/index.ts of the component MCP Interface. The manipulation leads to os command injection. Remote exploitation of the attack is possible. T...

7.5CVSS0.01362EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

MCP Asset Generation Server 路径遍历漏洞

MCP Asset Generation Server is a multi-type asset generation server for game development by the individual developer Suyog Sonwalkar. A path traversal vulnerability exists in MCP Asset Generation Server version 0.1.0, which stems from improper manipulation of the parameter statusFile in the...

7.5CVSS7AI score0.00418EPSS
Exploits0References1
NVD
NVD
added 2026/04/29 9:16 p.m.9 views

CVE-2026-7403

A security flaw has been discovered in geldata gel-mcp 0.1.0. This impacts the function listrules/fetchrule of the file src/gelmcp/server.py. The manipulation of the argument rulename results in path traversal. The attack may be performed from remote. The exploit has been released to the public a...

6.9CVSS0.00563EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.10 views

Gel MCP server 路径遍历漏洞

The Gel MCP server is a MCP server tool developed by Gel for the Gel open-source database. Version 0.1.0 of the Gel MCP server contains a path traversal vulnerability. This vulnerability stems from improper handling of the parameter rulename in the listrules/fetchrule function located in the file...

6.9CVSS6AI score0.00563EPSS
Exploits0References1
NVD
NVD
added 2026/04/28 10:16 p.m.4 views

CVE-2026-7318

A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...

5.9CVSS0.00185EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/28 9:0 p.m.32 views

CVE-2026-7319 elinsky execution-system-mcp add_action Tool server.py _get_context_file_path path traversal

A flaw has been found in elinsky execution-system-mcp 0.1.0. The impacted element is the function getcontextfilepath of the file src/executionsystemmcp/server.py of the component addaction Tool. This manipulation of the argument context causes path traversal. The attack can be initiated remotely...

7.5CVSS0.0053EPSS
Exploits0References5
CVE
CVE
added 2026/04/28 2:0 a.m.14 views

CVE-2026-7215

A CVE-2026-7215 exists in egtai gmx-vmd-mcp up to 0.1.0 affecting the VMD Launch Handler’s mcp_server.py; specifically, the function launch_vmd_gui_tool is vulnerable due to manipulation of the structure_file/trajectory_file arguments, enabling command injection. Access may be remote, and publicl...

7.5CVSS7.1AI score0.01338EPSS
Exploits0References5
CVE
CVE
added 2026/04/28 12:45 a.m.17 views

CVE-2026-7206

CVE-2026-7206 affects the project dubydu sqlite-mcp up to version 0.1.0. The vulnerability is in the function extract_to_json (file src/entry.py). Malicious manipulation of the output_filename argument enables a SQL injection vulnerability. Remote exploitation is possible and the exploit has been...

7.5CVSS7.1AI score0.00277EPSS
Exploits0References7
Rows per page
Query Builder