769 matches found
Kubernetes Secrets Store CSI Driver plugins arbitrary file write
Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods...
CLSA-2022-1652706309 Fix CVE(s): CVE-2019-17041, CVE-2019-17042, CVE-2018-16881
SECURITY UPDATE: denial of dervice - debian/patches/CVE-2018-16881.patch: introduces a frame size check in the processDataRcvd function of plugins/imptcp/imptcp.c. - CVE-2018-16881 SECURITY UPDATE: heap-based overflow - debian/patches/CVE-2019-17041.patch: adds length checks for invalid AIX log...
Improper Limitation of a Pathname to a Restricted Directory in WildFly
WildFly Core before version 6.0.0.Alpha3 does not properly validate file paths in .war archives, allowing for the extraction of crafted .war archives to overwrite arbitrary files. This is an instance of the 'Zip Slip' vulnerability...
Improper Input Validation
Overview Affected versions of this package are vulnerable to Improper Input Validation by not validating that the expanded path matches publicdir when serving static files. Remediation Upgrade sinatra to version 2.2.0 or higher. References - GitHub Commit - GitHub PR...
The vulnerability of the PHP interpreter is related to an error in processing paths to files containing the character \x00. This error allows attackers to gain unauthorized access to files or directories.
The vulnerability of the PHP interpreter extension is related to an error in processing paths to files containing the character \x00. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to files or directories...
Microsoft Windows Shell Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths...
Path Traversal
studio-42/elfinder is vulnerable to path traversal. The vulnerability exists due to improper handling of absolute file paths in the getFullPathfunction. allowing a remote attacker to access data in the system...
GHSA-7Q88-JXVP-9GP2 Path Traversal in Studio-42 elFinder through 2.1.60
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths...
Path Traversal in Studio-42 elFinder through 2.1.60
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths...
CVE-2022-26960
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths...
Path traversal
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths...
Command injection
iTunesRPC-Remastered is a Discord Rich Presence for iTunes on Windows utility. In affected versions iTunesRPC-Remastered did not properly sanitize image file paths leading to OS level command injection. This issue has been patched in commit cdcd48b. Users are advised to upgrade...
Mageia: Security Advisory (MGASA-2018-0059)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Lexmark path traversal vulnerability
Lexmark is a family of printers in the U.S. A path traversal vulnerability exists in Lexmark devices, which stems from the product's failure to properly filter special elements in resource or file paths. An attacker could access the PJL directory through this vulnerability and could override...
ChronoEngine ChronoForms Path Traversal Vulnerability
ChronoEngine ChronoForms is ChronoEngine company an easy to use and flexible Joomla form builder . A path traversal vulnerability exists in ChronoEngine ChronoForms that stems from the product failing to properly filter for special elements in the path of a resource or file. An attacker could use...
Ws Scrcpy 安全漏洞
Ws Scrcpy is a web client for Genymobile/Scrcpy and others. A security vulnerability exists in Ws Scrcpy that stems from the fact that ws-scrcpy is susceptible to external control of file names or paths...
WordPress Plugin Path Traversal Vulnerability (CNVD-2021-101672)
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. True Ranker plugin is a WordPress open source application plugin. WordPress True Ranker plugin has a path traversal...
The vulnerability of Cisco Firepower Threat Defense’s microprogramming software relates to improper external control of file names or file paths, allowing attackers to escalate their privileges.
The vulnerability of Cisco Firepower Threat Defense’s microprogramming software is related to improper external manipulation of the file name or file path. Exploiting this vulnerability can allow attackers to enhance their privileges by executing commands through the command line interface...
CVE-2021-43775 Arbitrary file reading vulnerability in Aim
Aim is an open-source, self-hosted machine learning experiment tracking tool. Versions of Aim prior to 3.1.0 are vulnerable to a path traversal attack. By manipulating variables that reference files with “dot-dot-slash ../” sequences and its variations or by using absolute file paths, it may be...
Unrestricted access to predictable file paths in hov/jobfair
An issue was discovered in the jobfair aka Job Fair extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded...