Lucene search
K

25 matches found

NVD
NVD
added 2017/07/17 1:18 p.m.19 views

CVE-2017-1000052

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions...

7.8CVSS7.7AI score0.00423EPSS
Exploits0References1
OSV
OSV
added 2017/07/17 1:18 p.m.22 views

CVE-2017-1000052

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions...

7.8CVSS7.1AI score
Exploits0References1
Prion
Prion
added 2017/07/17 1:18 p.m.14 views

Sql injection

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions...

4.6CVSS7.6AI score0.00423EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/07/13 8:0 p.m.53 views

CVE-2017-1000052

CVE-2017-1000052 affects Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2, where the Plug.Static component is vulnerable to a null byte injection that may allow bypassing filetype restrictions. The issue enables a local attacker to exploit the static file serving path, with impact described a...

7.8CVSS7.7AI score0.00423EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/07/13 8:0 p.m.28 views

CVE-2017-1000052

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions...

7.7AI score0.00423EPSS
Exploits0References1
Rows per page
Query Builder