tmp 输入验证错误漏洞

“tmp” is a temporary file and directory creator developed by KARASZI István as a Node.js tool. Version 0.2.6 of “tmp” contains a vulnerability related to input validation. This vulnerability arises from the “assertPath” guard, which only rejects string values that contain the substring “..”. When...

Linux Distros Unpatched Vulnerability : CVE-2025-54881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mermaid is a JavaScript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. I...

Radarsu Ts-process-promises Command Injection Vulnerability

Radarsu Ts-process-promises is a Javascript-based application for executing shell commands with cached output by the individual developers at Radarsu. Ts-process-promises is vulnerable to a command injection vulnerability with an injection point at line 45 of lib/process-promises.js...

SA-CONTRIB-2012-130 - Jstool - Multiple Vulnerabilities

Javascript Tool enables administrators to edit any javascript file online from an admin panel. The module does not protect its menu paths, which contain sensitive information about all javascript files on the site and their contents. The module does not validate filenames which can lead to...