CVE-2023-25364

Opswat Metadefender Core before 5.2.1 does not properly defend against potential HTML injection and XSS attacks...

EUVD-2022-53470

Malicious code in bioql PyPI...

CVE-2022-32273

As a result of an observable discrepancy in returned messages, OPSWAT MetaDefender Core MDCore before 5.1.2 could allow an authenticated user to enumerate filenames on the server...

CVE-2023-25364

Opswat Metadefender Core before 5.2.1 does not properly defend against potential HTML injection and XSS attacks...

Opswat Metadefender Core 安全漏洞

OPSWAT MetaDefender Core OPSWAT MDCore is a multi-engine anti-malware software from OPSWAT, Inc. It prevents the upload of malicious files on web applications that bypass sandboxing and other detection-based security solutions. A security vulnerability exists in Opswat Metadefender Core versions...

CVE-2023-25364

CVE-2023-25364 : Opswat Metadefender Core versions prior to 5.2.1 are vulnerable to HTML injection and XSS attacks due to inadequate input handling. The Red Hat, NVD, CVE listings all describe the same issue. Affected product: Opswat Metadefender Core; vulnerable component/path not explicitly det...

OPSWAT Metadefender Core - Privilege Escalation Exploit

Exploit Title: OPSWAT Metadefender Core - Privilege Escalation Exploit Author: Ulascan Yildirim Vendor Homepage: https://www.opswat.com/ Version: Metadefender Core 4.21.1 Tested on: Windows / Linux CVE : CVE-2022-32272 =============================================================================...

OPSWAT Metadefender Core 4.21.1 Privilege Escalation

Exploit Title: OPSWAT Metadefender Core - Privilege Escalation Date: 24 October 2022 Exploit Author: Ulascan Yildirim Vendor Homepage: https://www.opswat.com/ Version: Metadefender Core 4.21.1 Tested on: Windows / Linux CVE : CVE-2022-32272...

CVE-2022-32272

OPSWAT MetaDefender Core before 5.1.2, MetaDefender ICAP before 4.12.1, and MetaDefender Email Gateway Security before 5.6.1 have incorrect access control, resulting in privilege escalation...

Privilege escalation

OPSWAT MetaDefender Core before 5.1.2, MetaDefender ICAP before 4.12.1, and MetaDefender Email Gateway Security before 5.6.1 have incorrect access control, resulting in privilege escalation...

CVE-2022-32272

CVE-2022-32272 affects OPSWAT MetaDefender Core prior to 5.1.2, MetaDefender ICAP prior to 4.12.1, and MetaDefender Email Gateway Security prior to 5.6.1. The issue is due to incorrect access control, enabling privilege escalation. The Red Hat advisory and related sources confirm the same affecte...

CVE-2022-32273

As a result of an observable discrepancy in returned messages, OPSWAT MetaDefender Core MDCore before 5.1.2 could allow an authenticated user to enumerate filenames on the server...

CVE-2022-32273

As a result of an observable discrepancy in returned messages, OPSWAT MetaDefender Core MDCore before 5.1.2 could allow an authenticated user to enumerate filenames on the server...

CVE-2022-32273

As a result of an observable discrepancy in returned messages, OPSWAT MetaDefender Core MDCore before 5.1.2 could allow an authenticated user to enumerate filenames on the server...

CVE-2022-32273

OPSWAT MetaDefender Core (MDCore) prior to version 5.1.2 is affected. An observable discrepancy in returned messages can allow an authenticated user to enumerate filenames on the server, exposing directory/file names. The vulnerability is tied to the MDCore component and requires authentication. ...

OPSWAT MetaDefender Core 安全漏洞

OPSWAT MetaDefender Core OPSWAT MDCore is a multi-engine anti-malware software from OPSWAT, Inc. It prevents the upload of malicious files on web applications that bypass sandboxing and other detection-based security solutions. A security vulnerability exists in OPSWAT MetaDefender Core versions...