path-traversal
path-traversal
- CVE-2026-13528 - YunaiV/zhijiantianya ruoyi-vue-pro path traversal
- CVE-2026-41046 - qSnapper path traversal
- GHSA-QRV3-253H-G69C - pnpm path traversal
- CVE-2026-49338 - gonic playlist path traversal
- CVE-2026-50015 - pnpm malicious patch path traversal
- CVE-2026-53519 - Nezha dashboard path traversal leaks JWT secret
- CVE-2026-55697 - pnpm global bin name traversal
- CVE-2026-55698 - pnpm env lockfile short-circuit
- CVE-2026-55700 - pnpm stage download symlink traversal
- GHSA-qrv3-253h-g69c - pnpm configDependencies symlink traversal
- CVE-2026-55092 - Trivy OCI artifact title path traversal
- CVE-2026-55092 - Trivy OCI artifact title path traversal arbitrary write
- CVE-2026-41046 - qSnapper configName path traversal
- CVE-2026-41046 - qSnapper configName path traversal privilege escalation
- CVE-2026-42129 - Grafana Loki datasource callResource traversal
- CVE-2026-8442 - WP Review Slider Pro arbitrary file deletion
- CVE-2026-40987 - Spring Integration remote file sync arbitrary write
- CVE-2025-68143 - mcp-server-git arbitrary repository creation
- CVE-2025-68145 - mcp-server-git repository path validation bypass
- CVE-2026-26329 - OpenClaw browser upload file read
- CVE-2026-27905 - BentoML tar symlink arbitrary write
- CVE-2026-34070 - LangChain load_prompt path traversal
- CVE-2026-44023 - Docling Core remote filename SSRF
- CVE-2026-6321 - fast-uri encoded path traversal
- CVE-2026-27606 - Rollup path traversal arbitrary write
- CVE-2026-40576 - excel-mcp-server path traversal
- CVE-2026-47214 - Docling HTML backend URI and path handling
- CVE-2026-47397 - PraisonAI arbitrary file write
- CVE-2026-47669 - DbGate archive unzip arbitrary write RCE
- CVE-2026-47708 - stata-mcp log_file_name command injection
- CVE-2026-47731 - AIT-Core BSC path traversal file append
- CVE-2026-49143 - browserstack-runner log handler RCE
- GHSA-wx3m-whqv-xv47 - skillctl path and symlink traversal
- CVE-2026-44336 - PraisonAI MCP tools/call path traversal RCE
- CVE-2026-44340 - PraisonAI recipe symlink extraction escape
- CVE-2026-44542 - FileBrowser public share DELETE path traversal
- GHSA-xmxx/GHSA-mr34/GHSA-2gvc - OpenClaw gateway boundary hardening
- CVE-2026-41589 - Wish SCP path traversal
- GHSA-74m3 - zrok WebDAV DriveRoot symlink escape