4 matches found
EUVD-2024-54484
Malicious code in bioql PyPI...
Apache Tapestry allows deserialization of untrusted data
UNSUPPORTED WHEN ASSIGNED Apache Tapestry 3.x allows deserialization of untrusted data, leading to remote code execution. This issue is similar to but distinct from CVE-2020-17531, which applies the the also unsupported 4.x version line. NOTE: This vulnerability only affects Apache Tapestry versi...
SelectSurvey CMS (ASP.NET) Arbitrary File Upload Vulnerability
Exploit for asp platform in category web applications ============================================================= SelectSurvey CMS ASP.NET Shell Upload Vulnerability ============================================================= Exploit Title: SelectSurvey.NETv4 CMS ASP.NET Shell Upload...
Vulnerabilities in JW Player and millions of web sites
Hello 3APA3A! I want to warn you about security vulnerabilities in JW Player. These are Content Spoofing and Cross-Site Scripting vulnerabilities. ------------------------- Affected products: ------------------------- Vulnerable are JW Player 5.9.2156 and 5.9.2206, except one vulnerability and...