Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Github Security Blog
Github Security Blogadded 2026/02/02 8:50 p.m.6 views

picklescan vulnerable to arbitrary file create using logging.FileHandler

Summary Unsafe pickle deserialization allows unauthenticated attackers to perform Arbitrary File Creation. By chaining the logging.FileHandler class, an attacker can bypass RCE-focused blocklists to create empty files on the server. The vulnerability allows creating zero-byte files in arbitrary...

5.8AI score
Exploits0References5Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2001-1395

Malware in sbrugna...

4.6CVSS6.4AI score0.00525EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2001-1407

Malware in sbrugna...

7.5CVSS6.4AI score0.14501EPSS
Exploits0References5
OSV
OSVadded 2023/08/02 11:15 p.m.0 views

CVE-2023-3329

SpiderControl SCADA Webserver versions 2.08 and prior are vulnerable to path traversal. An attacker with administrative privileges could overwrite files on the webserver using the HMI's upload file feature. This could create size zero files anywhere on the webserver, potentially overwriting syste...

6.5CVSS5.8AI score0.00074EPSS
Exploits0References1
Prion
Prionadded 2019/04/22 4:29 p.m.14 views

Design/Logic Flaw

The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world-writable directory. If the OS kernel does not have symlink protections then an attacker can cause a zero byte file to be allocated on any writable filesystem...

5.8CVSS6.9AI score0.00163EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2015/11/09 4:19 p.m.0 views

USN-2788-2 unzip regression

USN-2788-1 fixed vulnerabilities in unzip. One of the security patches caused a regression when extracting 0-byte files. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Gustavo Grieco discovered that unzip incorrectly handled certain password protecte...

6AI score
Exploits0References2
Cvelist
Cvelistadded 2005/03/22 5:0 a.m.14 views

CVE-2001-1427

Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors...

6.6AI score0.14501EPSS
Exploits0References4
Cvelist
Cvelistadded 2005/03/18 5:0 a.m.18 views

CVE-2001-1415

vi.recover in OpenBSD before 3.1 allows local users to remove arbitrary zero-byte files such as device nodes...

6.4AI score0.00525EPSS
Exploits0References3
CERT
CERTadded 2001/08/03 12:0 a.m.15 views

Allaire ColdFusion Server contains vulnerability allowing templates to be overwritten by zero byte file of the same name

Overview A vulnerability exists in Allaire ColdFusion Server which allows an attacker to overwrite ColdFusion Server templates with zero byte files. Description A remotely exploitable vulnerability exists in the Allaire ColdFusion Server which could allow an attacker to overwrite ColdFusion Serve...

6.8AI score
Exploits0References2
NVD
NVDadded 2001/07/11 4:0 a.m.13 views

CVE-2001-1427

Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors...

7.5CVSS6.6AI score0.14501EPSS
Exploits0References4
Rows per page
Query Builder