mage-ai 安全漏洞

mage-ai is a modern alternative to Airflow open sourced by Mage. A security vulnerability exists in mage-ai that stems from a path traversal vulnerability that allows a remote user with the Viewer role to disclose arbitrary files from the Mage server via a Git Content request...

PT-2023-6115 · A10 · A10 Thunder Adc

Name of the Vulnerable Software and Affected Versions: A10 Thunder ADC affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. The specific flaw exists within the ShowTechDownloadView class,...

Directory Traversal Vulnerability in ZTE ZXR10 1800-2S

The ZXR10 1800-2S is a router product from China's ZTE Corporation ZTE. A directory traversal vulnerability exists in the ZTE ZXR10 1800-2S. An attacker can exploit this vulnerability to arbitrarily browse a website directory, resulting in the disclosure of private website files and directories...

CVE-2014-8678

The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile."...

Design/Logic Flaw

The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile."...

Gentoo Security Advisory GLSA 200903-36 (mldonkey)

The remote host is missing updates announced in advisory GLSA 200903-36. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

OpenEngineTraverse.txt

OpenEngine is a PHP based CMS. The parameter "template" is not correctly checked, for this you can include other scripts which will be interpreted. All actual versions are vulnerable up to 1.8 Beta 2, which is the newest one, only the paths and consequences differ. For example you can browse the...