45 matches found
CVE-2023-6908
DFIRKuiper Kuiper 2.3.4 contains a path-traversal vulnerability in the TAR Archive Handler’s unzip_file function (kuiper/app/controllers/case_management.py). Manipulating the dst_path argument enables traversal, and remote initiation is possible with high attack complexity and no required privile...
CVE-2023-6908 DFIRKuiper TAR Archive case_management.py unzip_file path traversal
A vulnerability, which was classified as problematic, was found in DFIRKuiper Kuiper 2.3.4. This affects the function unzipfile of the file kuiper/app/controllers/casemanagement.py of the component TAR Archive Handler. The manipulation of the argument dstpath leads to path traversal. It is possib...
PT-2023-32816 · Unknown · Dfirkuiper Kuiper
Name of the Vulnerable Software and Affected Versions: DFIRKuiper Kuiper version 2.3.4 Description: A problematic issue was found in the TAR Archive Handler component, specifically affecting the unzip file function of the case management.py file. The manipulation of the dst path argument leads to...
CVE-2023-6851
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical. This issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler. The manipulation leads to code injection. The attack may be initiated remotely. The...
Code injection
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical. This issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler. The manipulation leads to code injection. The attack may be initiated remotely. The...
CVE-2023-6851
The CVE-2023-6851 vulnerability affects kalcaddle KodExplorer up to version 4.51.03, specifically the ZIP Archive Handler's function unzipList in plugins/zipView/app.php. The issue enables code injection, with remote exploitation and publicly disclosed exploit details. Mitigation: upgrade to vers...
CVE-2023-6851 kalcaddle KodExplorer ZIP Archive app.php unzipList code injection
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical. This issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler. The manipulation leads to code injection. The attack may be initiated remotely. The...
PT-2023-32792 · Kalcaddle · Kodexplorer
Name of the Vulnerable Software and Affected Versions: kalcaddle KodExplorer versions up to 4.51.03 Description: A critical issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler, leading to code injection. The attack may be initiated remotel...
WithSecure products Security breaches
WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure products, which originates in the lhz archive unpack handler program that allows a local user to perform a denial of service on a system and bypass security...
CVE-2022-4880
A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is...
Path traversal
A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is...
CVE-2022-4880
Summary: CVE-2022-4880 affects stakira OpenUtau, specifically the ZIP Archive Handler’s VoicebankInstaller function (OpenUtau.Core/Classic/VoicebankInstaller.cs). The vulnerability is a path traversal issue in versions prior to 0.0.991. Impact as stated: critical severity with path traversal risk...
CVE-2022-4880 stakira OpenUtau ZIP Archive VoicebankInstaller.cs VoicebankInstaller path traversal
A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is...
OpenUtau 路径遍历漏洞
OpenUtau is an open source editing environment with a modern user experience for the UTAU community from the individual developers at StAkira. A path traversal vulnerability exists in stakira OpenUtau versions prior to 0.0.991, which originates in the function VoicebankInstaller in the file...
CVE-2019-25098
A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The...
Path traversal
A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The...
CVE-2019-25098
A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The...
CVE-2019-25098
CVE-2019-25098 affects soerennb eXtplorer up to version 2.1.12. The vulnerability is a path traversal flaw in an unknown portion of the include/archive.php file within the Archive Handler component. Upgrading to 2.1.13 addresses the issue (patch identifier b8fcb888f4ff5e171c16797a4b075c6c6f50bf46...
eXtplorer 路径遍历漏洞
eXtplorer is a PHP-based file manager. A path traversal vulnerability exists in versions prior to eXtplorer 2.1.13, which stems from a problem in the unknown section of the include/archive.php file in the component Archive Handler that can lead to path traversal...
PT-2023-11356 · Soerennb · Extplorer
Name of the Vulnerable Software and Affected Versions: soerennb eXtplorer versions up to 2.1.12 Description: A critical issue was found in the Archive Handler component, specifically in the file include/archive.php, which can lead to path traversal. The estimated number of potentially affected...