Lucene search
K

4 matches found

OSV
OSV
added 2026/05/04 1:12 p.m.4 views

JLSEC-2026-425 URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file...

URLs containing percent-encoded slashes / or \ can trick wcurl into saving the output file outside of the current directory without the user explicitly asking for it. This flaw only affects the wcurl command line tool...

4.6CVSS5.8AI score0.00302EPSS
Exploits0References6
NVD
NVD
added 2026/02/25 8:16 a.m.10 views

CVE-2025-11563

URLs containing percent-encoded slashes / or \ can trick wcurl into saving the output file outside of the current directory without the user explicitly asking for it. This flaw only affects the wcurl command line tool...

4.6CVSS0.00302EPSS
Exploits0References4
CVE
CVE
added 2026/02/25 7:20 a.m.38 views

CVE-2025-11563

CVE-2025-11563 describes a wcurl path-traversal issue where URLs with percent-encoded slashes can cause output to be saved outside the intended directory. The connected advisories (Ubuntu USN-8062-1, Amazon Linux ALAS2025-3088/ALAS2023-2025-1317, and related Nessus/NVD/NVL entries) corroborate th...

4.6CVSS5.2AI score0.00302EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/02/25 7:20 a.m.27 views

CVE-2025-11563 wcurl path traversal with percent-encoded slashes

URLs containing percent-encoded slashes / or \ can trick wcurl into saving the output file outside of the current directory without the user explicitly asking for it. This flaw only affects the wcurl command line tool...

0.00302EPSS
Exploits0References2
Rows per page
Query Builder