CVE-2024-0352

A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file leads to...

PT-2024-15488

Name of the Vulnerable Software and Affected Versions Likeshop versions up to 2.5.7.20210311 Description A critical vulnerability was found in the function FileServer::userFormImage of the file server/application/api/controller/File.php, which is part of the HTTP POST Request Handler component. T...

Path Traversal

iodine is vulnerable to Path Traversal . The vulnerability is due to improper validation or URL's allowrf to manipulate the static file server. This issue can be exploited by an attacker to read files outside the public folder via a malicious URL...

CVE-2024-22050 Iodine Static File Server Path Traversal Vulnerability

Path traversal in the static file service in Iodine less than 0.7.33 allows an unauthenticated, remote attacker to read files outside the public folder via malicious URLs...

CVE-2024-22050 Iodine Static File Server Path Traversal Vulnerability

Path traversal in the static file service in Iodine less than 0.7.33 allows an unauthenticated, remote attacker to read files outside the public folder via malicious URLs...

kernel: nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net

A flaw was identified in the NFS server nfsd implementation in the Linux kernel where the initialization of the per-CPU replycachestats counters was relocated incorrectly in the code path. This change can lead to use of uninitialized per-CPU statistical counters during NFS request handling when t...

Fedora: Security Advisory (FEDORA-2023-39f0ec3879)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 39 Update: netatalk-3.1.18-1.fc39

Netatalk is a freely-available Open Source AFP file server. A NIX/BSD system running Netatalk is capable of serving many Macintosh clients simultaneously as an AppleShare file server AFP...

[SECURITY] Fedora 38 Update: netatalk-3.1.18-1.fc38

Netatalk is a freely-available Open Source AFP file server. A NIX/BSD system running Netatalk is capable of serving many Macintosh clients simultaneously as an AppleShare file server AFP...

[SECURITY] Fedora 37 Update: netatalk-3.1.18-1.fc37

Netatalk is a freely-available Open Source AFP file server. A NIX/BSD system running Netatalk is capable of serving many Macintosh clients simultaneously as an AppleShare file server AFP...

The vulnerability in the web interface of the Copyparty file server allows a attacker to perform XSS attacks.

The vulnerability in the web interface of the Copyparty file server exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

CVE-2014-5329

GIGAPOD file servers Appliance model and Software model provide two web interfaces, 80/tcp and 443/tcp for user operation, and 8001/tcp for administrative operation. 8001/tcp is served by a version of Apache HTTP server containing a flaw in handling HTTP requests CVE-2011-3192, which may lead to ...

PT-2023-14434 · South River Technologies · Titan Ftp Server

Name of the Vulnerable Software and Affected Versions: Titan FTP server versions 19.0 and below Description: The issue allows users to be redirected to any target URL, which could potentially be exploited. Recommendations: For versions 19.0 and below, update to a version above 19.0 to resolve the...

PT-2023-9232

Name of the Vulnerable Software and Affected Versions Rejetto HTTP File Server versions 2.3m and earlier Description The vulnerability is related to the improper neutralization of special elements used in a template engine, allowing a remote, unauthenticated attacker to execute arbitrary commands...

PT-2023-9214 · Unknown · Http File Server

Name of the Vulnerable Software and Affected Versions: HTTP File Server affected versions not specified Description: The issue is related to inadequate access control in the HTTP File Server, which can be exploited by a remote attacker to execute arbitrary code. Recommendations: At the moment,...

CVE-2023-4118

A vulnerability, which was classified as problematic, was found in Cute Http File Server 2.0. This affects an unknown part of the component Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...

CVE-2023-4118

A vulnerability, which was classified as problematic, was found in Cute Http File Server 2.0. This affects an unknown part of the component Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...

Cross site scripting

A vulnerability, which was classified as problematic, was found in Cute Http File Server 2.0. This affects an unknown part of the component Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...

CVE-2023-4118 Cute Http File Server Search cross site scripting

A vulnerability, which was classified as problematic, was found in Cute Http File Server 2.0. This affects an unknown part of the component Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...

CVE-2023-4118

CVE-2023-4118 affects Cute Http File Server 2.0, specifically the Search component, where a cross-site scripting vulnerability can be triggered remotely. Multiple connected sources corroborate that the vulnerability allows remote initiation and that the public disclosure of the exploit has occurr...