CWE-41: CWE-41

CVE-2025-24470 is an Improper Resolution of Path Equivalence vulnerability in FortiPortal that allows remote unauthenticated attackers to retrieve sou...

A path parsing vulnerability in macOS allows malicious applications to bypass directory validation and gain root privileges. This affects macOS system...

This vulnerability allows attackers to bypass Windows Security Zone mapping protections, potentially tricking users into executing malicious content f...

This vulnerability allows unauthenticated attackers to bypass authentication in lunary-ai/lunary by including '/auth/' in API endpoint paths. Attacker...

CVE-2024-6839 is an improper regex path matching vulnerability in flask-cors 4.0.1 that causes longer regex patterns to be prioritized over more speci...

This vulnerability allows attackers to bypass Windows security zone restrictions by exploiting improper path equivalence resolution in the MapUrlToZon...

This CVE describes a security feature bypass vulnerability in the MapUrlToZone function, which is used by Windows to determine the security zone of UR...

This vulnerability allows attackers to bypass security zone restrictions in Windows when processing certain URLs, potentially enabling them to execute...

This vulnerability allows attackers to bypass the MapUrlToZone security feature in Microsoft Windows, potentially tricking the system into treating ma...

This vulnerability allows attackers to bypass security zone restrictions in Windows when processing certain URLs. It affects Windows systems that use ...

This vulnerability allows attackers to bypass Internet Explorer's security zone restrictions, potentially tricking users into running malicious conten...