Summary
Network-AI: Poisoned environment backup manifest allows arbitrary recursive deletion during backup pruning
References
Related vulnerabilities
All Supply chain →- MEDIUMGHSA-M54H-VHF9-3W3M
BBOT: Arbitrary File Write in postman_download Module
- HIGHGHSA-F44V-7QGW-9GH9
PraisonAI GitHub template cache path traversal allows outside-cache file write and directory deletion
- HIGHGHSA-869J-R97X-HX2G
Anki's local HTTP server does not sufficiently validate requests
- HIGHGHSA-CC8F-FCX3-GPJR
SurrealDB: Arbitrary file read via DEFINE ANALYZER mapper() filter
- MEDIUMGHSA-4XGF-CPJX-PC3J
pydantic-settings: NestedSecretsSettingsSource follows symlinks outside secrets_dir, enabling local file read and bypassing secrets_dir_max_size
- HIGHGHSA-F4XH-W4CJ-QXQ8
LangSmith SDK TracingMiddleware: Arbitrary server-side file read