13 matches found
CVE-2025-31053
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in quantumcloud KBx Pro Ultimate knowledgebase-helpdesk-pro allows Path Traversal.This issue affects KBx Pro Ultimate: from n/a through 8.0.5...
CVE-2025-31053
CVE-2025-31053 affects the WordPress KBx Pro Ultimate plugin; the vulnerability is a Path Traversal issue in KBx Pro Ultimate versions n/a through 7.9.8, with active exploitation risk not publicly detailed in the provided docs. The CVE entry and related sources indicate this is an authenticated/u...
CVE-2025-31053 WordPress KBx Pro Ultimate < 8.0.5 - Arbitrary File Deletion Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in quantumcloud KBx Pro Ultimate allows Path Traversal.This issue affects KBx Pro Ultimate: from n/a before 8.0.5...
WordPress KBx Pro Ultimate plugin < 8.0.5 - Arbitrary File Deletion Vulnerability
Arbitrary File Deletion Vulnerability discovered by Tran Nguyen Bao KhanhVCI - VNPT in WordPress Plugin KBx Pro Ultimate versions 8.0.5...
files (>=1.0.0 <=2.2.3), portal (>=2.0.0 <=3.0.1) potentially affected by CVE-2022-31053 via biscuit-auth (=1.2.0)
biscuit-auth CARGO version =1.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on biscuit-auth and may be impacted: - files =1.0.0, =2.0.0, =3.0.1 Source cves: CVE-2022-31053 Source advisory: OSV:GHSA-75RW-34Q6-72CR...
com.clever-cloud:biscuit-pulsar (>=1.1.13 <=2.3.2), com.clever-cloud:integration-test (>=1.2.0 <=1.4.6) +1 more potentially affected by CVE-2022-31053 via com.clever-cloud:biscuit-java (>=0.2.7 <=1.1.4)
com.clever-cloud:biscuit-java MAVEN version =0.2.7, =1.1.13, =1.2.0, =1.5.0, =1.5.5 Source cves: CVE-2022-31053 Source advisory: OSV:GHSA-75RW-34Q6-72CR...
CVE-2022-31053
creationtimestamp| type| source ---|---|--- 2022-06-14 00:17:15+00:00| seen| https://t.me/cibsecurity/44337...
CVE-2022-31053
Biscuit is an authentication and authorization token for microservices architectures. The Biscuit specification version 1 contains a vulnerable algorithm that allows malicious actors to forge valid Γ-signatures. Such an attack would allow an attacker to create a token with any access level. The...
CVE-2022-31053 Signature forgery in Biscuit
Biscuit is an authentication and authorization token for microservices architectures. The Biscuit specification version 1 contains a vulnerable algorithm that allows malicious actors to forge valid Γ-signatures. Such an attack would allow an attacker to create a token with any access level. The...
CVE-2022-31053 Signature forgery in Biscuit
Biscuit is an authentication and authorization token for microservices architectures. The Biscuit specification version 1 contains a vulnerable algorithm that allows malicious actors to forge valid Γ-signatures. Such an attack would allow an attacker to create a token with any access level. The...
CVE-2022-31053
CVE-2022-31053 involves Biscuit tokens where the v1 specification contains a vulnerable algorithm that allows forging valid Γ-signatures, enabling a token with any access level. The vulnerability does not affect Biscuit v2, which uses a different algorithm. Red Hat and OSV entries corroborate the...
CVE-2021-31053
...
CVE-2021-31053
CVE-2021-31053 entry is rejected and not used.