7267 matches found
Directory Traversal
Overview rswag is a package for generating beautiful API documentation directly from rspec integration tests Affected versions of this package are vulnerable to Directory Traversal in api/middleware.rb, which is accessible via the rswag-api component. JSON and YAML other than the OpenAPI or Swagg...
Exploit for Code Injection in Apache Rocketmq
CVE-2023-37582EXPLOIT Apache RocketMQ Arbitrary File Write Vu...
UBUNTU-CVE-2023-1183
A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker...
CVE-2023-1183 Arbitrary file write
A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker...
Mageia: Security Advisory (MGASA-2023-0225)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2023-0225 Updated libreoffice packages fix security vulnerability
Arbitrary File Write in hsqldb 1.8.0. CVE-2023-1183...
Updated libreoffice packages fix security vulnerability
Arbitrary File Write in hsqldb 1.8.0. CVE-2023-1183...
SUSE CVE-2023-35936
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
CVE-2023-30678
Potential zip path traversal vulnerability in Calendar application prior to version 12.4.07.15 in Android 13 allows attackers to write arbitrary file...
SAMSUNG Calendar 路径遍历漏洞
SAMSUNG Calendar is a calendar module from the South Korean company Samsung SAMSUNG. A security vulnerability exists in Samsung Calendar versions prior to 12.4.07.15, which stems from a potential zip path traversal vulnerability that could allow an attacker to write to arbitrary files...
PT-2023-22875 · Google · Android
Name of the Vulnerable Software and Affected Versions: Calendar application versions prior to 12.4.07.15 Description: The issue allows attackers to write arbitrary files due to a potential zip path traversal vulnerability in the Calendar application. This vulnerability is present in Android 13...
CVE-2023-35936
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
UBUNTU-CVE-2023-35936
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
CVE-2023-35936
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
Format string
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
CVE-2023-35936 Arbitrary file write is possible in Pandoc when using PDF output or --extract-media with untrusted input
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
CVE-2023-35936 Arbitrary file write is possible in Pandoc when using PDF output or --extract-media with untrusted input
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
CVE-2023-35936
Pandoc (the Haskell library/CLI) is affected from 1.13 up to but not including 3.1.4. An arbitrary file write could be triggered by a crafted image element when using --extract-media or when generating PDF, enabling creation/overwrite of files based on process privileges. Root cause involves flaw...
CVE-2023-35936
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which can be triggered by providing a specially crafte...
Pandoc 输入验证错误漏洞
Pandoc is a Haskell library for converting from one markup format to another, as well as command line tools that use the library. An input validation error vulnerability exists in Pandoc versions 1.13 through prior to 3.1.4, which stems from vulnerability to an arbitrary file write vulnerability...