CVE-2025-53891 TIME LINE has Improper File Validation in Upload Section

The timelineofficial/Time-Line- repository contains the source code for the TIME LINE website. A vulnerability was found in the TIME LINE website where uploaded files instruction/message media are not strictly validated for type and size. A user may upload renamed or oversized files that can...

CVE-2022-2554

The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example...

UBUNTU-CVE-2020-28086

pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...

SuSE 11.3 Security Update : emacs (SAT Patch Number 10519)

Emacs has been updated to fix the following issues : - Several cases of insecure usage of temporary files. CVE-2014-3421 / CVE-2014-3422 / CVE-2014-3423 / CVE-2014-3424 - Use of vc-annotate for renamed files when using Git. bnc854683 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

WordPress Plugin WP Easy Slideshow 1.0.3 - Multiple Vulnerabilities

WordPress Plugin WP Easy Slideshow 1.0.3 - Multiple Vulnerabilities Exploit Title: Wordpress WP Easy Slideshow Plugin Multiple Vulnerabilities Google Dork: inurl:/wp-content/uploads/wp-easy-slideshow/ Date: 2 April 2015 Exploit Author: Divya Vendor Homepage:...

CVE-2004-1670

Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other versions, allow remote attackers to 1 create arbitrary directories via a .. dot dot in the user parameter to viewaction.html or 2 rename arbitrary files via a ....// doubled dot do...