4 matches found
CVE-2023-1942
A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/?page=user of the component Avatar Handler. The manipulation leads to unrestricted upload. The attack can...
CVE-2023-1942 SourceCodester Online Computer and Laptop Store Avatar unrestricted upload
A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/?page=user of the component Avatar Handler. The manipulation leads to unrestricted upload. The attack can...
CVE-2023-1942
CVE-2023-1942 affects SourceCodester Online Computer and Laptop Store 1.0. The Avatar Handler’s /admin/?page=user functionality is vulnerable to unrestricted file uploads, enabling remote exploitation. Documents indicate an attacker can upload arbitrary files to execute code, with the vulnerabili...
Amazon Linux 2 : nss-util (ALAS-2023-1942)
The version of nss-util installed on the remote host is prior to 3.44.0-4. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1942 advisory. Empty or malformed p256-ECDH public keys may trigger a segmentation fault due values being improperly sanitized before...