IPWorks SSH Security Vulnerability

IPWorks SSH is a library from nsoftware that integrates SSH Secure Shell security features, allowing developers to easily integrate SSH security into Internet applications. A security vulnerability exists in IPWorks SSH that stems from the possibility of being induced to issue unintended file...

Improper Authentication

libfreerdp.so is vulnerable to Improper Authentication. The vulnerability is due to invalid credentials being accepted if the server has configured an invalid SAM file path. The attacker can successfully authenticate with invalid credentials if the SAM file path is incorrect...

ALPINE-CVE-2024-38475

Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure...

The vulnerability of the Labvantage LIMS file /labvantage/rc?command=file&file=WEB-CORE/elements/files/filesembedded.jsp&size=32 allows a attacker to execute XSS attacks.

The vulnerability of the /labvantage/rc file, with parameters command=file&file=WEB-CORE/elements/files/filesembedded.jsp&size=32, is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows an attacker to execute XSS attacks via the height/width...

Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs

Overview MFPs multifunction printers provided by Toshiba Tec Corporation and Oki Electric Industry Co., Ltd. contain multiple vulnerabilities listed below. Improper Restriction of Recursive Entity References in DTDs 'XML Entity Expansion' CWE-776 - CVE-2024-27141, CVE-2024-27142 Execution with...

OPENSUSE-SU-2024:13154-1 perl-File-Path-2.180000-1.15 on GA media

These are all security issues fixed in the perl-File-Path-2.180000-1.15 package on the GA media of openSUSE Tumbleweed...

Cab Management System SQL Injection Vulnerability

Cab Management System is a cab management system. A SQL injection vulnerability exists in Cab Management System version 1.0, which originates from an unknown section in /cms/classes/Users.php that leads to SQL injection via the parameter id...

PT-2024-4394 · Ruijie · Ruijie Rg-Uac

Name of the Vulnerable Software and Affected Versions: Ruijie RG-UAC version 1.0 Description: A critical issue has been found in the function get ip addr details of the file /view/dhcp/dhcpConfig/commit.php. The manipulation of the argument ethname leads to os command injection. The attack may be...

Online Pizza Ordering System 1.0 SQL Injection

Titles: opos-1.0 Multiple SQLi Author: nu11secur1ty Date: 06/07/2024 Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/16166/online-pizza-ordering-system-php-free-source-code.html Reference: https://portswigger.net/web-security/sql-injection Description: The email...

Remote code execution in mlflow

A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command 'Command Injection' within the mlflow.data.httpdatasetsource.py module. Specifically, when loading a dataset from a source URL with an HTTP...

CVE-2024-2548

A path traversal vulnerability exists in the parisneo/lollms-webui application, specifically within the lollmscore/lollms/server/endpoints/lollmsbindingfilesserver.py and lollmscore/lollms/security.py files. Due to inadequate validation of file paths between Windows and Linux environments using...

CVE-2024-1873

parisneo/lollms-webui is vulnerable to path traversal and denial of service attacks due to an exposed /selectdatabase endpoint in version a9d16b0. The endpoint improperly handles file paths, allowing attackers to specify absolute paths when interacting with the DiscussionsDB instance. This flaw...

CVE-2024-4888 Arbitrary File Deletion in BerriAI/litellm

BerriAI's litellm, in its latest version, is vulnerable to arbitrary file deletion due to improper input validation on the /audio/transcriptions endpoint. An attacker can exploit this vulnerability by sending a specially crafted request that includes a file path to the server, which then deletes...

robdns security breach

robdns is a dns service. A security vulnerability exists in robdns, which originates from the inclusion of unaligned addresses in /src/zonefile-insertion.c...

GO-2024-2797 Mattermost's detailed error messages reveal the full file path in github.com/mattermost/mattermost-server

Mattermost's detailed error messages reveal the full file path in github.com/mattermost/mattermost-server...

RHEL 5 : wpa_supplicant (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wpasupplicant: local configuration update allows privilege escalation CVE-2016-4477 - wpasupplicant:...

RHEL 7 : perl-file-path (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-File-Path: rmtree/removetree race condition CVE-2017-6512 Note that Nessus has not tested for this issue but h...

CVE-2024-35345

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts unidentified code within the file /classes/Users.php. Manipulating the argument id results in cross-site scripting...

CVE-2024-35352

Diño Physics School Assistant 2.3 is affected by a cross-site scripting (XSS) vulnerability in the code path /classes/Users.php?f=save. The issue is triggered by manipulating the middlename parameter, enabling XSS as described in multiple sources. CVSS 3.1 metrics indicate NETWORK attack vector w...

PT-2024-26442 · Anpviz · Anpviz

Name of the Vulnerable Software and Affected Versions: Anpviz products versions 3.2.2.2 and lower Description: The issue allows unauthenticated users to download the running configuration of the device via a HTTP GET request to "/ConfigFile.ini" or "/config.xml" URIs. This configuration file...