Wish 路径遍历漏洞

Wish is a server tool developed by Charm for simplifying SSH application development. Versions of Wish prior to 2.0.0 and 2.0.1 contained a path traversal vulnerability. This vulnerability stemmed from the SCP middleware not properly verifying file names, which could lead to path traversal attack...

WordPress plugin Boldman 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

Дырка в tnef

При извлечении данных из MS-TNEF-файлов не проверяется наличие служебных символов в имени файла, что позволяет переписать любой файл, принадлежащий пользователю...