EUVD-2022-30610

Malicious code in bioql PyPI...

org.eclipse.platform:org.eclipse.sdk (>=4.26.0 <=4.28.0) potentially affected by CVE-2023-4218 via org.eclipse.platform:org.eclipse.platform (>=4.26.0 <=4.28.0)

org.eclipse.platform:org.eclipse.platform MAVEN version =4.26.0, =4.26.0, =4.28.0 Source cves: CVE-2023-4218 Source advisory: OSV:GHSA-J24H-XCPC-9JW8...

CVE-2022-26041

Directory traversal vulnerability in RCCMD 4.26 and earlier allows a remote authenticated attacker with an administrative privilege to read or alter an arbitrary file on the server via unspecified vectors...

Directory traversal

Directory traversal vulnerability in RCCMD 4.26 and earlier allows a remote authenticated attacker with an administrative privilege to read or alter an arbitrary file on the server via unspecified vectors...

CVE-2022-26041

Directory traversal vulnerability in RCCMD 4.26 and earlier allows a remote authenticated attacker with an administrative privilege to read or alter an arbitrary file on the server via unspecified vectors...

CVE-2022-26041

CVE-2022-26041 affects RCCMD 4.26 and earlier. A directory traversal vulnerability allows a remote authenticated attacker with administrative privileges to read or alter arbitrary files on the server via unspecified vectors. Red Hat and JVN entries corroborate the affected version range and confi...

CVE-2021-28496

On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password configured for use by BiDirectional Forwarding Detection BFD will be leaked when displaying output over eAPI or other JSON outputs to other authenticated users on the devic...

Artica Proxy Operating System Command Injection Vulnerability

Artica Proxy is an open source Artica proxy solution. An operating system command injection vulnerability exists in Artica Proxy version 4.26, which can be exploited by remote attackers to execute commands with the help of shell metacharacters in the 'Modify the hostname' field...

Command injection

Artica Proxy 4.26 allows remote command execution for an authenticated user via shell metacharacters in the "Modify the hostname" field...

MailEnable Webmail Cross-Site Scripting Vulnerability

No description provided by source. ME020567: MailEnable webmail cross-site scripting vulnerability CWE-79 References: CVE-2012-0389 Discovered by: Sajjad Pourali, Narendra Shinde and Shahab NamaziKhah Vendor advisory: http://www.mailenable.com/kb/Content/Article.asp?ID=me020567 Vendor contact:...

MailEnable Webmail - Cross-Site Scripting

ME020567: MailEnable webmail cross-site scripting vulnerability CWE-79 References: CVE-2012-0389 Discovered by: Sajjad Pourali, Narendra Shinde and Shahab NamaziKhah Vendor advisory: http://www.mailenable.com/kb/Content/Article.asp?ID=me020567 Vendor contact: 2012-01-04 09:49:36 UTC Vendor...

Movable Type mt-wizard.cgi set_static_uri_to Parameter XSS

The version of Movable Type running on the remote host has a cross- site scripting vulnerability in 'mt-wizard.cgi'. Input to the 'setstaticurito' parameter is not sanitized. A remote attacker could exploit this by tricking a user into submitting a specially crafted POST request, which would...