Code injection

Zoho ManageEngine ADManager Plus before 7183 allows admin users to exploit an XXE issue to view files...

ZOHO ManageEngine ADManager Plus 代码问题漏洞

ZOHO ManageEngine ADManager Plus is a suite of Microsoft Active Directory management software from ZOHO designed for enterprise users using Windows domains. The software assists AD administrators and helpdesk technicians with day-to-day administrative tasks, such as batch management of user...

Duplicate Advisory: Starlette vulnerable to directory traversal

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-v5gw-mw7f-84px. This link is maintained to preserve external references. Original Description Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote...

PYSEC-2023-83

Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to view files in a web service which was built using Starlette...

CVE-2023-29159

Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to view files in a web service which was built using Starlette...

CVE-2023-29517

CVE-2023-29517 affects XWiki Platform, where the office document viewer macro could disclose any file on the host and trigger internal requests, depending on the servlet user’s permissions. Root cause: insecure access via the office viewer macro enabling information disclosure. Affected versions ...

CVE-2023-28828

CVE-2023-28828 is an XXE vulnerability in Polarion ALM affecting all versions prior to V22R2 (and referenced in related advisories for V2304.0). The root cause is improper restriction of XML External Entity references, enabling an attacker to view files on the application server filesystem. Impac...

CVE-2023-0156

The All-In-One Security AIOS WordPress plugin before 5.1.5 does not limit what log files to display in it's settings pages, allowing an authorized user admin+ to view the contents of arbitrary files and list directories anywhere on the server to which the web server has access. The plugin only...

SUSE CVE-2004-1138

VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as 1 termcap, 2 printdevice, 3 titleold, 4 filetype, 5 syntax, 6 backupext, 7 keymap, 8 patchmode, or 9 langmenu...

PT-2022-16007 · Swiftterm · Swiftterm

Name of the Vulnerable Software and Affected Versions: SwiftTerm versions prior to a94e6b24d24ce9680ad79884992e1dff8e150a31 Description: The issue allows an attacker to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's...

Zettlr input validation error vulnerability

Zettlr is the most comprehensive editor for professionally editing Markdown files. version 2.3.0 of Zettlr is vulnerable to an input validation error, which stems from the fact that the application has no CSP policy and does not properly validate content before rendering markdown files, which cou...

The vulnerability of Cisco Expressway microprogramming software and Cisco TelePresence Video Communication Server microprogramming software management devices is related to incorrect restrictions on XML references to external objects. This allows attackers to view the content of any file on the server or perform network scanning on the internal and external infrastructure.

The vulnerability of Cisco Expressway microprogramming software and Cisco TelePresence Video Communication Server microprogramming software related to external objects’ XML links is due to incorrect restrictions on these links. Exploiting this vulnerability allows a malicious actor to view the...

Vulnerability fixed in Microsoft System Center Operations Manager

Microsoft has fixed a vulnerability in System Center Operations Manager SCOM. The vulnerability allows a malicious remotely able to view files. The vulnerability is only exploitable on SCOM systems that have the web console installed. System Center:...

CVE-2020-18127

An issue in the /config/config.php component of Indexhibit 2.1.5 allows attackers to arbitrarily view files...

CVE-2020-18127

An issue in the /config/config.php component of Indexhibit 2.1.5 allows attackers to arbitrarily view files...

Design/Logic Flaw

An issue in the /config/config.php component of Indexhibit 2.1.5 allows attackers to arbitrarily view files...

CVE-2020-18127

An issue in the /config/config.php component of Indexhibit 2.1.5 allows attackers to arbitrarily view files...

CVE-2020-18127

CVE-2020-18127 affects Indexhibit 2.1.5, specifically the /config/config.php component. The vulnerability is an improper access control that lets an attacker view arbitrary files. Documented impact is file disclosure; no exploit details are provided in the sources. Related notices (e.g., PT-2021-...

PT-2021-10137 · Unknown · Indexhibit

Name of the Vulnerable Software and Affected Versions: Indexhibit version 2.1.5 Description: An issue in the "/config/config.php" component allows attackers to arbitrarily view files. Recommendations: For Indexhibit version 2.1.5, consider restricting access to the "/config/config.php" component...

Template Injection

hbs is vulnerable to template injection. The vulnerability exists due to a lack of sanitization of configuration options when input into the system via the Express render API. An attacker is able to view a file by overwriting an internal configuration option...