Design/Logic Flaw

A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...

CVE-2022-4768 Dropbox merou SSH Public Key public_key.py add_public_key injection

A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...

CVE-2022-4768

CVE-2022-4768 affects Dropbox Merou’s SSH Public Key Handler. The vulnerability lies in the add_public_key function of grouper/public_key.py, where manipulating the argument public_key_str leads to injection. It is possible to launch the attack remotely. The patch identified is d93087973afa26bc0a...

Dropbox Merou 注入漏洞

Dropbox Merou is an open source Dropbox application that allows users to create and manage their group memberships. Dropbox Merou suffers from an injection vulnerability that stems from a problem with the addpublickey function in the grouper/publickey.py file in the component SSH Public Key...

PT-2022-28082 · Dropbox · Dropbox

Name of the Vulnerable Software and Affected Versions: Dropbox merou affected versions not specified Description: A critical issue was found in the SSH Public Key Handler component, specifically in the add public key function of the grouper/public key.py file. The manipulation of the public key s...

GNUBOARD5 跨站脚本漏洞

GNUBOARD5 is a web forum system based on PHP and MySQL. A security vulnerability exists in GNUBOARD5 that originates from an unknown function in the file bbs/faq.php of the FAQ Key ID Handler component, which can be exploited by an attacker to cause cross-site scripting XSS via manipulation of th...