Lucene search
+L

65 matches found

EUVD
EUVD
added 2026/03/11 9:31 p.m.7 views

EUVD-2019-19746

FileThingie 2.5.7 contains an arbitrary file upload vulnerability that allows attackers to upload malicious files by sending ZIP archives through the ft2.php endpoint. Attackers can upload ZIP files containing PHP shells, use the unzip functionality to extract them into accessible directories, an...

9.8CVSS6AI score0.00903EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/25 11:10 p.m.7 views

EUVD-2026-8766

Manyfold is an open source, self-hosted web application for managing a collection of 3d models, particularly focused on 3d printing. Prior to version 0.133.0, when model render generation is enabled, a logged-in user can achieve RCE by uploading a ZIP containing a file with a shell metacharacter ...

7.5CVSS5.4AI score0.0037EPSS
Exploits1References2
OSV
OSV
added 2026/02/06 6:12 p.m.6 views

CVE-2025-69212 OpenSTAManager has an OS Command Injection in P7M File Processing

OpenSTAManager is an open source management software for technical assistance and invoicing. In 2.9.8 and earlier, a critical OS Command Injection vulnerability exists in the P7M signed XML file decoding functionality. An authenticated attacker can upload a ZIP file containing a .p7m file with a...

9.4CVSS6AI score0.01755EPSS
Exploits13References3
ATTACKERKB
ATTACKERKB
added 2026/02/03 4:56 p.m.4 views

CVE-2026-24673

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a file upload validation bypass vulnerability allows attackers to upload files with prohibited extensions by embedding them inside ZIP archives and extracting them using the...

4.3CVSS5.3AI score0.00241EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/02/02 3:17 p.m.6 views

EUVD-2025-206602

IBM WebSphere Application Server Liberty 17.0.0.3 through 26.0.0.1 could allow a privileged user to upload a zip archive containing path traversal sequences resulting in an overwrite of files leading to arbitrary code execution...

7.6CVSS5.8AI score0.0039EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/28 3:16 a.m.8 views

CVE-2026-24479

HUSTOF is an open source online judge based on PHP/C++/MySQL/Linux for ACM/ICPC and NOIP training. Prior to version 26.01.24, the problemimportqduoj.php and problemimporthoj.php modules fail to properly sanitize filenames within uploaded ZIP archives. Attackers can craft a malicious ZIP file...

9.8CVSS6AI score0.07895EPSS
Exploits4References1
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.10 views

HUSTOJ Path Traversal Vulnerability

HUSTOJ is a popular OJ system developed by Zhang Haobin zhblue from China. Versions of HUSTOJ before 26.01.24 contained a path traversal vulnerability. This vulnerability stemmed from the improper cleaning of file names in uploaded ZIP archives by the problemimportqduoj.php and problemimporthoj.p...

9.8CVSS6.1AI score0.07895EPSS
Exploits4References3
RedhatCVE
RedhatCVE
added 2025/12/14 5:3 a.m.6 views

CVE-2025-14476

The Doubly – Cross Domain Copy Paste for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.46 via deserialization of untrusted input from the content.txt file within uploaded ZIP archives. This makes it possible for authenticated...

8.8CVSS6.8AI score0.00467EPSS
Exploits0References1
Veracode
Veracode
added 2025/12/13 6:5 a.m.9 views

Denial Of Service (DoS)

processwire/processwire is vulnerable to Denial of Service. The vulnerability is due to automatic extraction of user-supplied ZIP files uploaded via Language Support without size or resource limits prior to validation, which allows an attacker with low privileges to upload a crafted ZIP and trigg...

6.5CVSS7AI score0.00395EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/05 12:9 a.m.7 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

8CVSS8.2AI score0.00262EPSS
Exploits1References1
OSV
OSV
added 2025/12/04 8:16 p.m.19 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

4.3CVSS6.4AI score0.00262EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/04 12:0 a.m.26 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

0.00262EPSS
Exploits1References2
Snyk
Snyk
added 2025/10/21 6:30 p.m.6 views

Data Amplification

Overview processwire/processwire is a CMS/CMF. Affected versions of this package are vulnerable to Data Amplification via the Language Support admin interface. A user with lang-edit permission can cause resource exhaustion by uploading a malicious ZIP file that is automatically extracted without...

6.9CVSS5.5AI score0.00395EPSS
Exploits1References2
OSV
OSV
added 2025/10/21 6:30 p.m.5 views

GHSA-9P44-Q66P-XM6P ProcessWire CMS vulnerable to resource-exhaustion Denial of Service

ProcessWire CMS 3.0.246 allows a low-privileged user with lang-edit to upload a crafted ZIP to Language Support that is auto-extracted without limits prior to validation, enabling resource-exhaustion Denial of Service...

7.1CVSS6.9AI score0.00395EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-30220

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.47809EPSS
Exploits3References4
NVD
NVD
added 2025/09/19 3:15 a.m.8 views

CVE-2025-10690

The Goza - Nonprofit Charity WordPress Theme theme for WordPress is vulnerable to unauthorized arbitrary file uploads due to a missing capability check on the 'beplusimportpackinstallplugin' function in all versions up to, and including, 3.2.2. This makes it possible for unauthenticated attackers...

9.8CVSS0.00703EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/08/04 12:0 a.m.14 views

WordPress Alone Theme 7.8.3 Arbitrary Plugin Upload / Code Execution

WordPress Alone Theme versions 7.8.3 and below are vulnerable to an unauthenticated arbitrary file upload vulnerability. This flaw allows unauthenticated attackers to upload and install arbitrary plugin ZIP files from remote URLs via an unprotected AJAX endpoint — resulting in remote code executi...

9.8CVSS8.5AI score0.47809EPSS
Exploits3
Snyk
Snyk
added 2025/07/09 3:29 p.m.1 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the charms HTTP API endpoint when handling uploaded ZIP files. An attacker can overwrite arbitrary files on the server by uploading a specially crafted ZIP archive containing directory traversal sequences,...

8.8CVSS7.7AI score0.00647EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:31 a.m.7 views

CVE-2023-29657

eXtplorer 2.1.15 is vulnerable to Insecure Permissions. File upload in file manager allows uploading zip file containing php pages with arbitrary code executions...

8.8CVSS7.6AI score0.01095EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/04/22 4:32 p.m.16 views

CVE-2025-34028 Commvault Command Center Innovation Release <= 11.38.25 Unathenticated Install Package Path Traversal

The Commvault Command Center Innovation Release allows an unauthenticated actor to upload ZIP files that represent install packages that, when expanded by the target server, are vulnerable to path traversal vulnerability that can result in Remote Code Execution via malicious JSP. This issue affec...

9.3CVSS9.3AI score0.97292EPSS
Exploits5References4
Rows per page
Query Builder