Lucene search
+L

7 matches found

NVD
NVD
added 4 days ago5 views

CVE-2026-22102

A POST request sent to a specific webserver endpoint can be used to write to arbitrary file locations. The endpoint accepts the filename parameter in the Content-Disposition header without verification. This can be used to cause a denial of service by overwriting system files, or...

9.3CVSS0.00431EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago31 views

CVE-2026-22102 Arbitrary file overwrite through certificate update functionality

A POST request sent to a specific webserver endpoint can be used to write to arbitrary file locations. The endpoint accepts the filename parameter in the Content-Disposition header without verification. This can be used to cause a denial of service by overwriting system files, or...

9.3CVSS0.00431EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Owlfiles 跨站脚本漏洞

Owlfiles is a file manager from Owlfiles, Inc. A cross-site scripting vulnerability exists in Owlfiles version 12.0.1, which stems from a cross-site scripting vulnerability in the path parameter in the HTTP server endpoint that could lead to the execution of arbitrary JavaScript...

6.1CVSS5.9AI score0.00244EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-36356

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.04251EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/09/19 3:15 p.m.6 views

CVE-2022-40075

Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, formfastsettingwifiset...

7.5CVSS7.1AI score0.00857EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/07/19 12:0 a.m.7 views

MiCODUS MV720 GPS 安全漏洞

The MiCODUS MV720 GPS is a GPS tracker from MiCODUS USA. A security vulnerability exists in the MiCODUS MV720 GPS that originates from an authenticated and insecure direct object reference vulnerability in the main web server on the endpoint and parameterized device IDs, which accepts arbitrary...

7.1CVSS7.3AI score0.00624EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/07/19 12:0 a.m.6 views

MiCODUS MV720 GPS 安全漏洞

MiCODUS MV720 GPS is a GPS tracker from MiCODUS Corporation. A security vulnerability exists in the MiCODUS MV720 GPS tracker that originates from an authenticated, insecure direct object reference vulnerability in the main web server on the endpoint and POST parameter "Device ID" that accepts an...

6.5CVSS7.6AI score0.00866EPSS
Exploits0References4
Rows per page
Query Builder