CVE-2025-29867

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in Hancom Inc. Hancom Office 2018, Hancom Inc. Hancom Office 2020, Hancom Inc. Hancom Office 2022, Hancom Inc. Hancom Office 2024 allows File Content Injection.This issue affects Hancom Office 2018: before 10.0.0.12681;...

CVE-2025-29867

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in Hancom Inc. Hancom Office 2018, Hancom Inc. Hancom Office 2020, Hancom Inc. Hancom Office 2022, Hancom Inc. Hancom Office 2024 allows File Content Injection.This issue affects Hancom Office 2018: before 10.0.0.12681;...

CVE-2025-29867

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in Hancom Inc. Hancom Office 2018, Hancom Inc. Hancom Office 2020, Hancom Inc. Hancom Office 2022, Hancom Inc. Hancom Office 2024 allows File Content Injection.This issue affects Hancom Office 2018: before 10.0.0.12681;...

CVE-2025-29867

CVE-2025-29867 describes a type confusion vulnerability in Hancom Office products (Office 2018, 2020, 2022, 2024) that permits file content injection. Affected versions are: Office 2018 before 10.0.0.12681; Office 2020 before 11.0.0.8916; Office 2022 before 12.0.0.4426; Office 2024 before 13.0.0....

CVE-2025-29867

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in Hancom Inc. Hancom Office 2018, Hancom Inc. Hancom Office 2020, Hancom Inc. Hancom Office 2022, Hancom Inc. Hancom Office 2024 allows File Content Injection.This issue affects Hancom Office 2018: before 10.0.0.12681;...

EUVD-2025-206779

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in Hancom Inc. Hancom Office 2018, Hancom Inc. Hancom Office 2020, Hancom Inc. Hancom Office 2022, Hancom Inc. Hancom Office 2024 allows File Content Injection.This issue affects Hancom Office 2018: before 10.0.0.12681;...

Hancom Office 安全漏洞

Hancom Office is a mobile office application developed by Hancom Corporation in South Korea. This program supports the viewing and editing of documents in various formats. There is a security vulnerability in Hancom Office, which stems from type confusion and may lead to file content injection. T...

CVE-2025-10856

Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Software Services Trade Inc. Teknoera allows File Content Injection.This issue affects Teknoera: through 01102025...

CVE-2025-10856

CVE-2025-10856 concerns Teknoera (Solvera Software Services Trade Inc.). Public records describe an Unrestricted Upload of File with Dangerous Type vulnerability that enables File Content Injection in Teknoera up to version/date 01102025. The CVSS 3.1 base metrics indicate a HIGH severity (8.1), ...

CVE-2025-10856

Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Software Services Trade Inc. Teknoera allows File Content Injection.This issue affects Teknoera: through 01102025...

Linux Distros Unpatched Vulnerability : CVE-2022-37426

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection. CVE-2022-37426 Note that...

CVE-2025-0984

Netoloji Software E-Flow is affected (versions before 3.23.00). The vulnerability is an Unrestricted Upload of File with Dangerous Type combined with improper input neutralization during web page generation, enabling Stored XSS and File Content Injection. The issue can allow an attacker to access...

Netoloji E-Flow 代码问题漏洞

Netoloji E-Flow is an application from the Turkish company Netoloji. A code issue vulnerability exists in Netoloji E-Flow versions prior to 3.23.00, which stems from an unrestricted upload of dangerous types of files and improper input neutralization during web page generation, which could lead t...

CVE-2022-37426

Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection...

CVE-2022-37426

Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection...

CVE-2022-37426

Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection...

CVE-2022-37426

Technical details (affected components, versions, root cause, and fixes) are not publicly provided in the supplied connected documents. Monitor for updates from vendors and security bulletins.

PT-2022-23991 · Unknown · Opennebula

Name of the Vulnerable Software and Affected Versions: OpenNebula affected versions not specified Description: The issue allows for File Content Injection due to an Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula core on Linux. Recommendations: At the moment, there is ...

File Content Injection in extension "Hardcoded text to Locallang" (mqk_locallangtools)

The extension fails to verify the filename of saved language files which results in File Content Injection. An authenticated user with editor permissions can use the vulnerability to inject predefined content into any file the webserver has access to resulting in affected files being corrupted...