Lucene search
K

6 matches found

EUVD
EUVD
added 10 hours ago9 views

EUVD-2026-41736

A vulnerability was determined in AD-Security ADMiner 1.9.0. Affected is the function requesta of the file adminer/scripts/analysecache.py of the component Cache Handler. This manipulation of the argument sys.argv1 causes deserialization. The attack can only be executed locally. The pull request ...

5.3CVSS5.8AI score
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/11/30 1:41 a.m.8 views

CVE-2025-13435

A security vulnerability has been detected in Dreampie Resty up to 1.3.1.SNAPSHOT. This affects the function Request of the file /resty-httpclient/src/main/java/cn/dreampie/client/HttpClient.java of the component HttpClient Module. Such manipulation of the argument filename leads to path traversa...

8.1CVSS6.5AI score0.00644EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2024/05/17 10:32 p.m.15 views

Insecure deserialize Vulnerability in FLOW3

Due to a missing signature HMAC for a request argument, an attacker could unserialize arbitrary objects within FLOW3. To our knowledge it is neither possible to inject code through this vulnerability, nor are there exploitable objects within the FLOW3 Base Distribution. However, there might be...

7.3AI score
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/05/17 12:0 a.m.7 views

PT-2024-40163 · Flow3 · Flow3

Name of the Vulnerable Software and Affected Versions: FLOW3 affected versions not specified Description: The issue is related to a missing signature HMAC for a request argument, which could allow an attacker to unserialize arbitrary objects within FLOW3. It is noted that code injection through...

3.7CVSS7.5AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/17 5:23 a.m.29 views

Typo3 Extbase Framework Unsafe Deserialization

The Extbase Framework in TYPO3 4.6.x through 4.6.6, 4.7, and 6.0 unserializes untrusted data, which allows remote attackers to unserialize arbitrary objects and possibly execute arbitrary code via vectors related to "a missing signature HMAC for a request argument."...

5CVSS7.9AI score0.02365EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2012/09/04 8:55 p.m.19 views

Design/Logic Flaw

The Extbase Framework in TYPO3 4.6.x through 4.6.6, 4.7, and 6.0 unserializes untrusted data, which allows remote attackers to unserialize arbitrary objects and possibly execute arbitrary code via vectors related to "a missing signature HMAC for a request argument."...

5CVSS8.2AI score0.02365EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder