CVE-2024-6958 itsourcecode University Management System Avatar File st_update.php unrestricted upload

A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /stupdate.php of the component Avatar File Handler. The manipulation of the argument personalimage leads to unrestricted upload. The attack can be...

CVE-2024-6958 itsourcecode University Management System Avatar File st_update.php unrestricted upload

A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /stupdate.php of the component Avatar File Handler. The manipulation of the argument personalimage leads to unrestricted upload. The attack can be...

PT-2024-37997 · Itsourcecode · Itsourcecode University Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode University Management System version 1.0 Description: A critical issue was found in the Avatar File Handler component of the itsourcecode University Management System, specifically affecting the file /st update.php. The...

PT-2024-5528 · Assimp +4 · Assimp +4

Name of the Vulnerable Software and Affected Versions: Assimp versions prior to 5.4.2 Description: The issue is related to a heap-based buffer overflow vulnerability. It allows a local attacker to execute arbitrary code by inputting a specially crafted file into the product. This can be achieved...

ROS-20240711-03

Vulnerability of NTFS file handler NtfsHandler.cpp of 7-Zip archiver is related to the possibility of heap-based buffer overflow of a heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker, acting remotely, execute arbitrary code A vulnerability in the NTFS file...

SUSE-SU-2024:2379-1 Security update for jbigkit

This update for jbigkit fixes the following issues: - CVE-2022-1210: Fixed denial of service in TIFF File Handler bsc1198146...

ROS-20240626-08

A vulnerability in the ISO 9660 Image File Handler component of the libcdio library is related to a buffer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

PT-2024-4422

Name of the Vulnerable Software and Affected Versions libcdio version 2.1.0 Description The issue is related to a buffer overflow vulnerability in the ISO 9660 Image File Handler component of the libcdio library. This vulnerability can be exploited to execute arbitrary code via a crafted ISO 9660...

CVE-2024-5353

A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function decompress of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

CVE-2024-5353

A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function decompress of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

CVE-2024-5353 anji-plus AJ-Report ZIP File decompress path traversal

A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function decompress of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

CVE-2024-5353

CVE-2024-5353 affects anji-plus AJ-Report up to 1.4.1. The issue is a path traversal in the ZIP File Handler decompress function, allowing remote initiation. Exploit has been disclosed publicly. No remediation details are provided in the connected documents; no explicit fixes or patched versions ...

AJ-Report 路径遍历漏洞

AJ-Report is a fully open source, drag-and-drop editing visual design tool from anji-plus open source. A path traversal vulnerability exists in anji-plus AJ-Report 1.4.1 and earlier versions, which stems from a path traversal vulnerability in the function decompress of the component ZIP File...

ROS-20240507-04

A vulnerability in the Temp File Handler component of rc is related to the creation of temporary files. Exploitation The exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...

CVE-2024-3430

A vulnerability was found in QKSMS up to 3.9.4 on Android. It has been classified as problematic. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible ...

CVE-2024-3430

A vulnerability was found in QKSMS up to 3.9.4 on Android. It has been classified as problematic. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible ...

CVE-2024-3430

CVE-2024-3430 affects QKSMS up to version 3.9.4 on Android, impacting the Backup File Handler component via manipulation of an area in androidmanifest.xml. The vulnerability leads to exposure of backup files to an unauthorized control sphere and can be exploited on a physical device. Public explo...

QKSMS 安全漏洞

QKSMS is an open source alternative to the Stock Messaging application on Android by Moez Bhatti Personal Developer. A security vulnerability exists in QKSMS 3.9.4 and earlier versions, which stems from a security flaw in the file androidmanifest.xml of the component Backup File Handler...

CVE-2024-3128

UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, has been found in Replify-Messenger 1.0 on Android. This issue affects some unknown processing of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to...

CVE-2024-3124 fridgecow smartalarm Backup File androidmanifest.xml backup

A vulnerability classified as problematic has been found in fridgecow smartalarm 1.8.1 on Android. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible...