Karmada 路径遍历漏洞

Karmada is a Kubernete management system open-sourced by Karmada. A path traversal vulnerability exists in versions of Karmada prior to 1.12.0, which stems from allowing users to run cloud-native applications across multiple Kubernetes clusters and clouds...

GHSA-475G-VJ6C-XF96 CrateDB database has an arbitrary file read vulnerability

Summary There is an arbitrary file read vulnerability in the CrateDB database, and authenticated CrateDB database users can read any file on the system. Details There is a COPY FROM function in the CrateDB database that is used to import file data into database tables. This function has a flaw, a...