CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 3 days ago•23 views

CVE-2026-54352 Budibase: Arbitrary file read by workspace-builder via PWA-zip symlink upload

9.6CVSS0.00468EPSS

CVE•added 3 days ago•12 views

CVE-2026-56876

CVE-2026-56876 affects the extract-zip library: when extracting archives, symlink targets are not validated, enabling a symlink with a relative path (e.g., '../../../../etc/passwd') to point outside the extraction directory. Depending on usage, this could allow reading or writing to arbitrary fil...

8.6CVSS5.9AI score0.00319EPSS

ATTACKERKB•added 3 days ago•5 views

CVE-2026-56876

extract-zip does not validate symlink targets when extracting zip archives. When processing a malicious zip file containing a symlink with a relative path like '../../../../etc/passwd', extract-zip will extract the symlink without validation, allowing it to point outside the extraction directory...

8.6CVSS5.9AI score0.00319EPSS

Exploits0References4

CVE•added 5 days ago•42 views

CVE-2026-44017

CVE-2026-44017 concerns Docling’s EasyOCR model download: prior to 2.91.0, ZIP archives were extracted without validating member paths, enabling Zip Slip path traversal. An attacker who could supply or intercept the model source could overwrite files anywhere writable by the process, potentially ...

7.5CVSS6.7AI score0.00407EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2026/06/11 12:0 a.m.•6 views

openSUSE 16 Security Update : python-requests (openSUSE-SU-2026:20926-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20926-1 advisory. This update for python-requests fixes the following issue: - CVE-2026-25645: extractzippedpaths uses predictable filenames when extracting files from zi...

5.5CVSS5.6AI score0.00182EPSS

Cvelist•added 2026/06/10 5:30 p.m.•24 views

CVE-2026-50567 Fission: Zip Slip in pkg/utils/zip.go:Unarchive allows fetcher to write outside the destination directory

Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.25.0, Unarchive in pkg/utils/zip.go joined each archive entry name with the destination directory via filepath.Join and wrote the result...

7.7CVSS0.00301EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•6 views

EulerOS 2.0 SP13 : python-requests (EulerOS-SA-2026-2356)

According to the versions of the python-requests packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extractzippedpaths utility function uses a predictable filename...

5.5CVSS5.4AI score0.00182EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•9 views

EulerOS 2.0 SP13 : python-requests (EulerOS-SA-2026-2313)

5.5CVSS5.4AI score0.00182EPSS

OPENSUSE Linux•added 2026/06/09 12:0 a.m.•5 views

Security update for python-requests (moderate)

openSUSE security update: security update for python-requests ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20926-1 Rating: moderate References: bsc1260589 Cross-References: CVE-2026-25645 CVSS scores: CVE-2026-25645 SUSE : 5.5...

6.8CVSS5.3AI score0.00182EPSS

OSV•added 2026/06/08 4:38 p.m.•5 views

OPENSUSE-SU-2026:20926-1 Security update for python-requests

This update for python-requests fixes the following issue: - CVE-2026-25645: extractzippedpaths uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation bsc1260589...

5.5CVSS5.3AI score0.00182EPSS

OSV•added 2026/06/08 4:27 p.m.•4 views

SUSE-SU-2026:22055-1 Security update for python-requests

5.5CVSS5.3AI score0.00182EPSS

ATTACKERKB•added 2026/06/02 2:3 p.m.•12 views

CVE-2026-10621

Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files via a crafted ZIP archive. Collibra Agent fails to properly validate and canonicalize file path during ZIP extraction, this can allow an attacker to write files outside the intended extraction directo...

5.9AI score0.00402EPSS

Exploits0References3Affected Software2

Vulnrichment•added 2026/06/02 2:3 p.m.•10 views

CVE-2026-10621 CVE-2026-10621

5.9AI score0.00402EPSS

CVE•added 2026/06/02 2:3 p.m.•31 views

CVE-2026-10621

CVE-2026-10621 : Path traversal (Zip Slip) in Collibra Agent during ZIP extraction allows a remote attacker to write arbitrary files outside the extraction directory via a crafted ZIP archive, notably through POST /rest/restore. Exploitation can lead to remote code execution when a malicious JSP ...

7.5CVSS5.9AI score0.00402EPSS

OSV•added 2026/05/29 4:38 p.m.•7 views

GHSA-HWC4-GMRW-5222 Gotenberg has path traversal in zip entry name via Windows-style separators in upload filename

Summary filepath.Base on the Linux container does not strip backslashes , because \ is only a path separator on Windows. A multipart filename like ........\Windows\System32\evil.pdf survives Gotenberg's input sanitisation and lands verbatim as the zip entry name when a multi-output route...

8.8CVSS5.8AI score0.00032EPSS

NVD•added 2026/05/29 12:16 p.m.•16 views

CVE-2026-9559

A path traversal vulnerability exists in the campaign import feature of Mautic 7. When extracting uploaded ZIP files during campaign imports, a flaw in the validation logic allows file paths to escape the intended temporary directories. An authenticated user with campaign import privileges...

9.9CVSS0.00583EPSS

ATTACKERKB•added 2026/05/29 10:19 a.m.•6 views

CVE-2026-9559

9.9CVSS6AI score0.00583EPSS

CNNVD•added 2026/05/29 12:0 a.m.•8 views

Mautic 安全漏洞

Mautic is an open-source marketing automation software developed by Mautic. This software can monitor and manage websites, send emails, and manage customer resources. Version 7 of Mautic has a security vulnerability, which stems from path traversal in the activity import function. This...

9.9CVSS6.3AI score0.00583EPSS