13854 matches found
ROOT-OS-DEBIAN-12-CVE-2024-28757 CVE-2024-28757 in rootio-expat - Patched by Root
Root has patched CVE-2024-28757 in the rootio-expat package for Root:Debian:12. Multiple fixed versions available...
LOLLMS WebUI - Absolute Path Traversal
An absolute path traversal vulnerability exists in parisneo/lollms-webui v9.6, specifically in the openfile endpoint of lollmsadvanced.py. The sanitizepath function with allowabsolutepath=True allows an attacker to access arbitrary files and directories on a Windows system. This vulnerability can...
DedeCMS - Open Redirect via download.php
Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests. id: CVE-2024-57241 info: name: DedeCMS - Open Redirect via download.php...
Landray EKP - Path Traversal
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
Tube Video Ads Lite - Reflected XSS
Tube Video Ads Lite WordPress plugin = 1.5.7 contains a reflected cross-site scripting caused by lack of sanitization and escaping of a parameter before outputting it in the page, letting attackers execute arbitrary scripts in the context of high privilege users, exploit requires attacker to craf...
Sunshine Photo Cart <= 3.1.1 - Reflected Cross-Site Scripting
WP Sunshine Sunshine Photo Cart versions up to 3.1.1 contain a cross-site scripting caused by improper neutralization of input during web page generation, letting attackers execute malicious scripts in users' browsers, exploit requires attacker to craft malicious input. id: CVE-2024-30194 info:...
CVE-2024-1065
creationtimestamp| type| source ---|---|--- 2026-07-12 06:00:04+00:00| published-proof-of-concept| https://t.me/cKure/16512 2026-07-12 07:00:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/88211 2026-07-13 00:00:49+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/882...
ROOT-APP-PYPI-CVE-2024-35195 CVE-2024-35195 in rootio-requests - Patched by Root
Root has patched CVE-2024-35195 in the rootio-requests package for Root:PyPI. Multiple fixed versions available...
ROOT-APP-PYPI-CVE-2024-27306 CVE-2024-27306 in rootio-aiohttp - Patched by Root
Root has patched CVE-2024-27306 in the rootio-aiohttp package for Root:PyPI. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-38949 CVE-2024-38949 in rootio-libde265 - Patched by Root
Root has patched CVE-2024-38949 in the rootio-libde265 package for Root:Debian:12. Multiple fixed versions available...
ROOT-APP-MAVEN-CVE-2024-12798 CVE-2024-12798 in io.root.ch.qos.logback:logback-core - Patched by Root
Root has patched CVE-2024-12798 in the io.root.ch.qos.logback:logback-core package for Root:Maven. Multiple fixed versions available...
ROOT-APP-MAVEN-CVE-2024-56337 CVE-2024-56337 in io.root.org.apache.tomcat:tomcat-catalina - Patched by Root
Root has patched CVE-2024-56337 in the io.root.org.apache.tomcat:tomcat-catalina package for Root:Maven. Multiple fixed versions available...
ROOT-APP-MAVEN-CVE-2024-50379 CVE-2024-50379 in io.root.org.apache.tomcat:tomcat-catalina - Patched by Root
Root has patched CVE-2024-50379 in the io.root.org.apache.tomcat:tomcat-catalina package for Root:Maven. Multiple fixed versions available...
ROOT-APP-NPM-CVE-2024-21490 CVE-2024-21490 in @rootio/angular - Patched by Root
Root has patched CVE-2024-21490 in the @rootio/angular package for Root:npm. Multiple fixed versions available...
CVE-2024-30326
creationtimestamp| type| source ---|---|--- 2026-07-08 15:42:47+00:00| seen| https://infosec.exchange/users/DarkWebInformer/statuses/116885118437929306...
ROOT-APP-MAVEN-CVE-2024-22234 CVE-2024-22234 in io.root.org.springframework.security:spring-security-core - Patched by Root
Root has patched CVE-2024-22234 in the io.root.org.springframework.security:spring-security-core package for Root:Maven. Multiple fixed versions available...
ROOT-APP-PYPI-CVE-2024-21520 CVE-2024-21520 in rootio-djangorestframework - Patched by Root
Root has patched CVE-2024-21520 in the rootio-djangorestframework package for Root:PyPI. Multiple fixed versions available...
ROOT-APP-PYPI-CVE-2024-45231 CVE-2024-45231 in rootio-django - Patched by Root
Root has patched CVE-2024-45231 in the rootio-django package for Root:PyPI. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-52616 CVE-2024-52616 in rootio-avahi - Patched by Root
Root has patched CVE-2024-52616 in the rootio-avahi package for Root:Debian:12. Multiple fixed versions available...
ROOT-APP-PYPI-CVE-2024-28219 CVE-2024-28219 in rootio-pillow - Patched by Root
Root has patched CVE-2024-28219 in the rootio-pillow package for Root:PyPI. Multiple fixed versions available...