24 matches found
EUVD-2018-9599
Malware in sbrugna...
EUVD-2018-9601
Malware in sbrugna...
Remote Code Execution (RCE)
smolagents is vulnerable Remote Code Execution RCE. The vulnerability is due to inadequate enforcement of static and dynamic checks in localpythonexecutor.py, allowing attackers to exploit whitelisted modules and functions...
CVE-2025-22213
Inadequate checks in the Media Manager allowed users with "edit" privileges to change file extension to arbitrary extension, including .php and other potentially executable extensions...
CVE-2025-22213 [20250301] - Core - Malicious file uploads via Media Manager
Inadequate checks in the Media Manager allowed users with "edit" privileges to change file extension to arbitrary extension, including .php and other potentially executable extensions...
PT-2024-31056 · Apple · Xcode +1
Name of the Vulnerable Software and Affected Versions: Xcode versions prior to 16 Description: The issue allows an app to potentially inherit Xcode permissions, enabling access to user data due to inadequate permissions checking. Recommendations: For versions prior to 16, update to Xcode 16 to...
SAP Student Life Cycle Management 安全漏洞
SAP Student Life Cycle Management is a student life cycle management system from SAP. An authorization issue vulnerability exists in SAP Student Life Cycle Management that stems from a failure to perform proper authorization checks on authenticated users, which could be exploited by an attacker t...
PT-2022-21481 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.5 Description: The issue allows an app to potentially gain root privileges due to inadequate checks. The estimated number of potentially affected devices is not specified. There is no information about real-world...
Design/Logic Flaw
In RELIC before 2020-08-01, RSA PKCS1 v1.5 signature forgery can occur because certain checks of the padding and of the first two bytes are inadequate. NOTE: this requires that a low public exponent such as 3 is being used. The product, by default, does not generate RSA keys with such a low numbe...
Authorization
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application...
CVE-2019-15028
In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...
[20190801] - Core - Hardening com_contact contact form
Inadequate checks in comcontact could allowed mail submission in disabled forms...
[20190204] - Core - Stored XSS issue in the Global Configuration help url #2
Inadequate checks at the Global Configuration helpurl settings allowed a stored XSS...
[20181001] - Core - Hardening com_contact contact form
Inadequate checks in comcontact could allowed mail submission in disabled forms...
CVE-2018-15881
An issue was discovered in Joomla! before 3.8.12. Inadequate checks regarding disabled fields can lead to an ACL violation...
CVE-2018-15882
An issue was discovered in Joomla! before 3.8.12. Inadequate checks in the InputFilter class could allow specifically prepared phar files to pass the upload filter...
CVE-2018-15881
An issue was discovered in Joomla! before 3.8.12. Inadequate checks regarding disabled fields can lead to an ACL violation...
[20180803] - Core - ACL Violation in custom fields
Inadequate checks regarding disabled fields can lead to an ACL violation...
[20181003] - Core - Access level Violation in com_tags
Inadequate checks on the tags search fields can lead to an access level violation...
CVE-2018-11327
An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to see the names of tags that were either unpublished or published with restricted view permission...