Lucene search
K

7 matches found

CNNVD
CNNVD
added 2025/10/07 12:0 a.m.4 views

Code-Projects Online Hotel Reservation System 代码问题漏洞

Online Hotel Reservation System is an online hotel reservation system. Online Hotel Reservation System suffers from an arbitrary file upload vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /admin/addgalleryexec.php. No details of the...

8.8CVSS7.1AI score0.00299EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/07/09 12:14 p.m.4 views

OpenStack: malicious qcow2/vmdk images

An input validation flaw was discovered in how multiple OpenStack services validate images with backing file references. An authenticated attacker could provide a malicious image via upload, or by creating and modifying an image from an existing volume. Validation of images can be triggered durin...

6.5CVSS6AI score0.00835EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/07/02 4:47 p.m.30 views

OpenStack: malicious qcow2/vmdk images

An input validation flaw was discovered in how multiple OpenStack services validate images with backing file references. An authenticated attacker could provide a malicious image via upload, or by creating and modifying an image from an existing volume. Validation of images can be triggered durin...

6.5CVSS6AI score0.00835EPSS
Exploits0References6
OSV
OSV
added 2022/06/24 4:15 p.m.5 views

CVE-2022-20829

A vulnerability in the packaging of Cisco Adaptive Security Device Manager ASDM images and the validation of those images by Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker with administrative privileges to upload an ASDM image that contains malicious...

7.2CVSS6.2AI score0.03206EPSS
Exploits1References3
OSV
OSV
added 2022/05/16 3:15 p.m.4 views

CVE-2022-1409

The VikBooking Hotel Booking Engine & PMS WordPress plugin before 1.5.8 does not properly validate images, allowing high privilege users such as administrators to upload PHP files disguised as images and containing malicious PHP code...

7.2CVSS7.1AI score0.01436EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/05/16 3:15 p.m.5 views

CVE-2022-1409

The VikBooking Hotel Booking Engine & PMS WordPress plugin before 1.5.8 does not properly validate images, allowing high privilege users such as administrators to upload PHP files disguised as images and containing malicious PHP code...

7.2CVSS7.2AI score0.01436EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2014/04/16 11:24 a.m.5 views

OpenJDK: Incorrect mlib/raster image validation (2D, 8027841)

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

10CVSS7AI score0.07571EPSS
Exploits0References5
Rows per page
Query Builder