Aggregator

CVE-2025-30474 | Apache Commons VFS up to 2.9.x FtpFileObject information exposure

VulDB Recent Entries
1 year 1 month ago
A vulnerability was found in Apache Commons VFS up to 2.9.x. It has been declared as problematic. Affected by this vulnerability is the function FtpFileObject. The manipulation leads to information exposure through error message. This vulnerability is known as CVE-2025-30474. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-27553 | Apache Commons VFS up to 2.9.x FileObject API resolveFile Scope path traversal

VulDB Recent Entries
1 year 1 month ago
A vulnerability was found in Apache Commons VFS up to 2.9.x. It has been classified as problematic. Affected is the function resolveFile of the component FileObject API. The manipulation of the argument Scope leads to relative path traversal. This vulnerability is traded as CVE-2025-27553. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-2691 | nossrf up to 1.0.3 Hostname server-side request forgery (SNYK-JS-NOSSRF-9510842)

VulDB Recent Entries
1 year 1 month ago
A vulnerability was found in nossrf up to 1.0.3 and classified as critical. This issue affects some unknown processing. The manipulation of the argument Hostname leads to server-side request forgery. The identification of this vulnerability is CVE-2025-2691. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad