SPIP Cross-Site Scripting Vulnerability

SPIP is a freeware program from SPIP for creating Internet sites. A cross-site scripting vulnerability exists in SPIP versions prior to 4.1.3 and 4.2.7, which stems from cross-site scripting in ecrire/public/assembler.php...

CVE-2023-7136

A vulnerability classified as problematic was found in code-projects Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /main/doctype.php of the component Document Type Handler. The manipulation of the argument docname with the input " leads to...

Path Traversal

typo3/cms-core is vulnerable to Path Traversal. The vulnerability arises due to a lack of file path sanitization in the baseuri field within the /typo3/record/edit endpoint, allowing an attacker with administrator privileges to arbitrary view files from the filesystem...

CVE-2023-5672

The WP Mail Log WordPress plugin before 1.1.3 does not properly validate file path parameters when attaching files to emails, leading to local file inclusion, and allowing an attacker to leak the contents of arbitrary files...

CVE-2023-5672

The WP Mail Log WordPress plugin before 1.1.3 does not properly validate file path parameters when attaching files to emails, leading to local file inclusion, and allowing an attacker to leak the contents of arbitrary files...

Design/Logic Flaw

The WP Mail Log WordPress plugin before 1.1.3 does not properly validate file path parameters when attaching files to emails, leading to local file inclusion, and allowing an attacker to leak the contents of arbitrary files...

CVE-2023-5991

CVE-2023-5991 affects the Hotel Booking Lite WordPress plugin prior to 4.8.5. The issue arises from the plugin not validating user-supplied file paths and lacking proper CSRF/authorization checks, enabling unauthenticated attackers to download and delete arbitrary server files. Remediation is to ...

PT-2023-32253 · WordPress · Wp Mail Log

Name of the Vulnerable Software and Affected Versions: WP Mail Log WordPress plugin versions prior to 1.1.3 Description: The issue is related to the improper validation of file path parameters when attaching files to emails, leading to local file inclusion. This allows an attacker to leak the...

CVE-2023-7096

A flaw has been found in code-projects Faculty Management System 1.0. The affected element is an unknown function of the file /admin/php/crud.php. This manipulation of the argument fieldname/tablename causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

Path Traversal

Gradio is vulnerable for Path Traversal. The vulnerability is due to improper file path validation within the /file endpoint. An attacker can access arbitrary files on the server by requesting a filepath starting with...

UBUNTU-CVE-2023-49084

Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database TSDB. While using the detected SQL Injection and insufficient processing of the include file path, it is possible to execute arbitrary code on the server. Exploitation of the...

Directory Traversal

mlflow is vulnerable to Directory Traversal. The vulnerability exists in the validatepathissafe function within uri.py which allows an attacker to read or write to files outside of the restricted directory using a crafted file path...

External Control Of File Name Or Path

h2o is vulnerable to External Control of File Name or Path. The vulnerability exists due to improper input validation which allows an attacker to manipulate file paths to access or modify files outside of the intended directories...

Clone < 2.4.3 - Unauthenticated Backup Download

Description The plugin uses buffer files to store in-progress backup informations, which is stored at a publicly accessible, statically defined file path. PoC While a backup job is running, visitors can access one of the following files it might take a couple tries, as the timing needs to be righ...

Bazarr Code Issue Vulnerability

Bazarr is a software from Bazarr, a companion application to Sonarr and Radarr that manages and downloads subtitles according to your requirements. A code issue vulnerability exists in Bazarr version 1.2.4, which stems from a Server Request Forgery SSRF vulnerability in the file...

External Control of File Name or Path in h2oai/h2o-3

Remote unauthenticated attackers can overwrite arbitrary server files with attacker-controllable data. The data that the attacker can control is not entirely arbitrary. h2o writes a CSV/XLS/etc file to disk, so the attacker data is wrapped in quotations and starts with "C1", if they're exporting ...

CVE-2023-6569

External Control of File Name or Path in h2oai/h2o-3...

CVE-2023-6569

External Control of File Name or Path in h2oai/h2o-3...

CVE-2023-6569 External Control of File Name or Path in h2oai/h2o-3

External Control of File Name or Path in h2oai/h2o-3...

SUSE-SU-2023:4710-1 Security update for hplip

This update for hplip fixes the following issues: - Fixed insecure /tmp file paths inside hppsfilter booklet printing bsc1214399...