2671 matches found
CVE-2025-40592
A vulnerability has been identified in Mendix Studio Pro 10 All versions V10.23.0, Mendix Studio Pro 10.12 All versions V10.12.17, Mendix Studio Pro 10.18 All versions V10.18.7, Mendix Studio Pro 10.6 All versions V10.6.24, Mendix Studio Pro 11 All versions V11.0.0, Mendix Studio Pro 8 All versio...
CVE-2025-40592
CVE-2025-40592 describes a zip path traversal in the Mendix Studio Pro module installation process. The vulnerability affects Mendix Studio Pro versions prior to: 8.18.35, 9.24.35, 10.6.24, 10.12.17, 10.18.7, and 10.23.0, with all versions of 11 affected. By crafting a malicious module (e.g., via...
Siemens Mendix Studio Pro
SUMMARY Mendix Studio Pro contains a vulnerability in the module installation process, that could allow an attacker to write or modify arbitrary files in directories outside a developer’s project directory. Siemens has released new versions for several affected products and recommends to update...
PT-2025-25305
Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description Due to missing authorization of an API endpoint, unauthorized users can send HTTP GET requests to gather sensitive information. An attacker could also send HTTP POST requests to modify the log...
SUSE-SU-2025:01886-1 Security update for perl-YAML-LibYAML
This update for perl-YAML-LibYAML fixes the following issues: - CVE-2025-40908: YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified bsc1243902...
SUSE-SU-2025:01885-1 Security update for perl-YAML-LibYAML
This update for perl-YAML-LibYAML fixes the following issues: - CVE-2025-40908: YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified bsc1243902...
The vulnerability of the django.utils.log.log_response() function in the Django web application framework allows a hacker to gain access and modify data in the log file.
The vulnerability of the django.utils.log.logresponse function in the Django web application framework is related to improper handling of log file output. Exploiting this vulnerability can allow an attacker to gain access and modify data in the log files...
SUSE CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
DEBIAN-CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
AZL-62279 CVE-2025-40908 affecting package perl-YAML-LibYAML 0.81-3
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
UBUNTU-CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908
CVE-2025-40908 affects perl-YAML-LibYAML; versions before 0.903.0 are vulnerable due to a 2-argument open that can modify existing files. The issue is confirmed in multiple sources; impact is described as high for confidentiality and integrity with critical severity (CVSS 3.1: 9.1). A fixed versi...
CVE-2025-40908 YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908 YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
PT-2025-23428
Name of the Vulnerable Software and Affected Versions YAML-LibYAML versions prior to 0.903.0 Description YAML-LibYAML uses a two-argument open function when parsing YAML files, which allows an attacker to modify existing files on the system. This flaw allows a local attacker to provide a crafted...
libyaml 安全漏洞
libyaml is a codec library for YAML from the YAML community. A security vulnerability exists in versions of libyaml prior to 0.903.0, which stems from the use of the parameter open that may result in modification of existing files...
Infoblox NIOS Privilege Escalation (000010393)
The version of Infoblox NIOS installed on the remote host is affected by a erroneous access control issue that allows authenticated users to modify and delete system files without proper authorization. Note that Nessus has not tested for this issue but has instead relied only on the application's...