21 matches found
EUVD-2025-1698
Malicious code in bioql PyPI...
EUVD-2025-1696
Malicious code in bioql PyPI...
EUVD-2025-1697
Malicious code in bioql PyPI...
CVE-2025-0473
Vulnerability in the PMB platform that allows an attacker to persist temporary files on the server, affecting versions 4.0.10 and above. This vulnerability exists in the file upload functionality on the ‘/pmb/authorities/import/iimportauthorities’ endpoint. When a file is uploaded via this...
CVE-2025-0472
Information exposure in the PMB platform affecting versions 4.2.13 and earlier. This vulnerability allows an attacker to upload a file to the environment and enumerate the internal files of a machine by looking at the request response...
CVE-2025-0472
Information exposure in the PMB platform affecting versions 4.2.13 and earlier. This vulnerability allows an attacker to upload a file to the environment and enumerate the internal files of a machine by looking at the request response...
CVE-2025-0473
Vulnerability in the PMB platform that allows an attacker to persist temporary files on the server, affecting versions 4.0.10 and above. This vulnerability exists in the file upload functionality on the ‘/pmb/authorities/import/iimportauthorities’ endpoint. When a file is uploaded via this...
CVE-2025-0471
Unrestricted file upload vulnerability in the PMB platform, affecting versions 4.0.10 and above. This vulnerability could allow an attacker to upload a file to gain remote access to the machine, being able to access, modify and execute commands freely...
CVE-2025-0471
Unrestricted file upload vulnerability in the PMB platform, affecting versions 4.0.10 and above. This vulnerability could allow an attacker to upload a file to gain remote access to the machine, being able to access, modify and execute commands freely...
CVE-2025-0473 Incomplete Cleanup vulnerability in PMB platform
Vulnerability in the PMB platform that allows an attacker to persist temporary files on the server, affecting versions 4.0.10 and above. This vulnerability exists in the file upload functionality on the ‘/pmb/authorities/import/iimportauthorities’ endpoint. When a file is uploaded via this...
CVE-2025-0473 Incomplete Cleanup vulnerability in PMB platform
Vulnerability in the PMB platform that allows an attacker to persist temporary files on the server, affecting versions 4.0.10 and above. This vulnerability exists in the file upload functionality on the ‘/pmb/authorities/import/iimportauthorities’ endpoint. When a file is uploaded via this...
CVE-2025-0473
CVE-2025-0473 describes a vulnerability in PMB platform where the file upload at /pmb/authorities/import/iimport_authorities creates a temporary file that is deleted after a POST to the same endpoint, but an attacker can trap the second POST to prevent deletion, causing persistence of temporary f...
CVE-2025-0472
The connected sources confirm a CVE-2025-0472 information-exposure vulnerability in the PMB platform, affecting versions up to 4.2.13. The issue allows an attacker to upload a file to the environment and enumerate internal machine files by inspecting the request response. The root cause is descri...
CVE-2025-0472 Information exposure vulnerability in PMB platform
Information exposure in the PMB platform affecting versions 4.2.13 and earlier. This vulnerability allows an attacker to upload a file to the environment and enumerate the internal files of a machine by looking at the request response...
CVE-2025-0472 Information exposure vulnerability in PMB platform
Information exposure in the PMB platform affecting versions 4.2.13 and earlier. This vulnerability allows an attacker to upload a file to the environment and enumerate the internal files of a machine by looking at the request response...
CVE-2025-0471 Unrestricted Upload of File with Dangerous Type vulnerability in PMB platform
Unrestricted file upload vulnerability in the PMB platform, affecting versions 4.0.10 and above. This vulnerability could allow an attacker to upload a file to gain remote access to the machine, being able to access, modify and execute commands freely...
CVE-2025-0471 Unrestricted Upload of File with Dangerous Type vulnerability in PMB platform
Unrestricted file upload vulnerability in the PMB platform, affecting versions 4.0.10 and above. This vulnerability could allow an attacker to upload a file to gain remote access to the machine, being able to access, modify and execute commands freely...
CVE-2025-0471
The CVE-2025-0471 entry concerns PMB platform unrestricted file upload allowing remote access and command execution. Affected versions include 4.0.10 and later (CNNVD cites up to 4.2.13). The underlying issue is unrestricted file upload in PMB platform, enabling an attacker to upload a file to ga...
PMB platform 代码问题漏洞
PMB platform is a free document management software from PMB Inc. A code issue vulnerability exists in PMB platform versions 4.0.10 through 4.2.13, which stems from the presence of an unrestricted file upload that could allow an attacker to upload a file in order to gain remote access to the...
PMB platform 信息泄露漏洞
PMB platform is a free document management software from PMB Inc. An information disclosure vulnerability exists in PMB platform versions 4.0.10 through 4.2.13, which stems from the presence of an information disclosure issue that could allow an attacker to upload a file to the environment and...