3983 matches found
CVE-2017-9731
In meta/classes/packageipk.bbclass in Poky in poky-pyro 17.0.0 for Yocto Project through YP Core - Pyro 2.3, attackers can obtain sensitive information by reading a URL in a Source entry in an ipk package...
CVE-2017-6862
creationtimestamp| type| source ---|---|--- 2017-05-11 18:16:06+00:00| seen| https://t.me/webamoozir/1752 2022-06-08 19:35:04+00:00| published-proof-of-concept| https://t.me/truesecator/3042 2022-06-13 12:33:51+00:00| seen| MISP/24c0c150-19f9-4301-87cf-6ab59dbb3c32 2023-06-14 21:10:03+00:00| seen...
CVE-2016-8583
creationtimestamp| type| source ---|---|--- 2016-11-02 00:40:30+00:00| published-proof-of-concept| https://t.me/FullDisclosure/221...
CVE-2016-7981
creationtimestamp| type| source ---|---|--- 2016-10-19 20:44:12+00:00| published-proof-of-concept| https://t.me/FullDisclosure/177...
CVE-2015-5546
creationtimestamp| type| source ---|---|--- 2015-08-19 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37868...
CVE-2015-4117
creationtimestamp| type| source ---|---|--- 2015-06-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37369...
CVE-2014-8612
creationtimestamp| type| source ---|---|--- 2015-01-29 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/35938...
PHPSlash 0.5.3 2/0.6.1 URL Block Arbitrary File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2724/info PHPSlash is a widely used open source Groupware utility. PHPSlash contains a vulnerability which may disclose files readable to the webserver process on the underlying host to PHPSlash users who can 'edit' URL...
Design/Logic Flaw
cartridgerepository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with a 1 .tar.gz, 2 .zip, 3 .tgz, or 4 .tar file extension in a cartridge manifest file...
CVE-2014-3496
cartridgerepository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with a 1 .tar.gz, 2 .zip, 3 .tgz, or 4 .tar file extension in a cartridge manifest file...
PT-2014-5359 · Red Hat · Openshift Origin +1
Name of the Vulnerable Software and Affected Versions: OpenShift Origin and Enterprise versions 1.2.8 through 2.1.1 Description: The issue allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with certain file extensions in a cartridge manifest fil...
Origin: Command execution as root via downloadable cartridge source-url
cartridgerepository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with a 1 .tar.gz, 2 .zip, 3 .tgz, or 4 .tar file extension in a cartridge manifest file...
Origin: Command execution as root via downloadable cartridge source-url
cartridgerepository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with a 1 .tar.gz, 2 .zip, 3 .tgz, or 4 .tar file extension in a cartridge manifest file...
CVE-2013-4123
creationtimestamp| type| source ---|---|--- 2013-07-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/26886...
CVE-2013-4878
creationtimestamp| type| source ---|---|--- 2013-06-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/25986 2025-09-19 21:02:30+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lz7r6smitl2g...
CVE-2011-4275
creationtimestamp| type| source ---|---|--- 2013-02-13 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24492 2013-02-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24529 2013-04-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24969 2013-10-20...
CVE-2013-1465
creationtimestamp| type| source ---|---|--- 2013-02-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24465...
CVE-2012-5865
creationtimestamp| type| source ---|---|--- 2012-12-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/23253...
CVE-2011-4640
creationtimestamp| type| source ---|---|--- 2012-10-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37943...
CVE-2012-1769
creationtimestamp| type| source ---|---|--- 2012-07-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/19962...