14 matches found
EUVD-2024-17477
Malicious code in bioql PyPI...
CVE-2024-1750
A vulnerability, which was classified as critical, was found in TemmokuMVC up to 2.3. Affected is the function getimgurl/imgreplace in the library lib/imagesgetdown.php of the component Image Download Handler. The manipulation leads to deserialization. It is possible to launch the attack remotely...
CVE-2024-1750
A vulnerability, which was classified as critical, was found in TemmokuMVC up to 2.3. Affected is the function getimgurl/imgreplace in the library lib/imagesgetdown.php of the component Image Download Handler. The manipulation leads to deserialization. It is possible to launch the attack remotely...
CVE-2024-1750
A vulnerability, which was classified as critical, was found in TemmokuMVC up to 2.3. Affected is the function getimgurl/imgreplace in the library lib/imagesgetdown.php of the component Image Download Handler. The manipulation leads to deserialization. It is possible to launch the attack remotely...
Deserialization of untrusted data
A vulnerability, which was classified as critical, was found in TemmokuMVC up to 2.3. Affected is the function getimgurl/imgreplace in the library lib/imagesgetdown.php of the component Image Download Handler. The manipulation leads to deserialization. It is possible to launch the attack remotely...
CVE-2024-1750 TemmokuMVC Image Download images_get_down.php img_replace deserialization
A vulnerability, which was classified as critical, was found in TemmokuMVC up to 2.3. Affected is the function getimgurl/imgreplace in the library lib/imagesgetdown.php of the component Image Download Handler. The manipulation leads to deserialization. It is possible to launch the attack remotely...
CVE-2024-1750 TemmokuMVC Image Download images_get_down.php img_replace deserialization
A vulnerability, which was classified as critical, was found in TemmokuMVC up to 2.3. Affected is the function getimgurl/imgreplace in the library lib/imagesgetdown.php of the component Image Download Handler. The manipulation leads to deserialization. It is possible to launch the attack remotely...
CVE-2024-1750
CVE-2024-1750 affects TemmokuMVC up to version 2.3. The vulnerability resides in the Image Download Handler’s library file lib/images_get_down.php, specifically the get_img_url/img_replace function, where input manipulation enables deserialization. Reported impact is remote code execution with hi...
TemmokuMVC Code Issues Vulnerabilities
TemmokuMVC is an open source MVC framework for small and medium-sized enterprises from China's TemmokuMVC company. A code issue exists in TemmokuMVC 2.3 and earlier versions, the vulnerability stems from a security issue in the function getimgurl/imgreplace in lib/imagesgetdown.php in the compone...
PT-2024-18275 · Unknown · Temmokumvc
Name of the Vulnerable Software and Affected Versions: TemmokuMVC versions up to 2.3 Description: A critical issue was found in the function get img url/img replace in the library lib/images get down.php of the component Image Download Handler. The manipulation leads to deserialization. It is...
SQL injection vulnerability in TEMMOKUMVC in***.php file
TEMMOKUMVC is Pizhou Tianmu Network Technology Co., Ltd. developed a professional PHP MySQL products , using independent MVC framework for large and medium-sized enterprises and open source MVC. TEMMOKUMVC in.php file has a SQL injection vulnerability . Attackers can exploit the vulnerability to...
Command Execution Vulnerability in TEMMOKUMVC Module Management Service
TEMMOKUMVC is Pizhou Tianmu Network Technology Co., Ltd. developed a professional PHP MySQL products , using independent MVC framework for large and medium-sized enterprises and open source MVC. TEMMOKUMVC command execution vulnerability exists in the module management . Attackers can use the...
Command Execution Vulnerability in TEMMOKUMVC of Pizhou Tianmu Network Technology Co.
TEMMOKUMVC is Pizhou Tianmu Network Technology Co., Ltd. developed a professional PHP + MYSQL products, using the independent MVC framework for large and small and medium-sized enterprises of the open source MVC. TEMMOKUMVC Pizhou Tianmu Network Technology Co., Ltd. command execution vulnerabilit...
SQL Injection Vulnerability in TEMMOKUMVC of Pizhou Tianmu Network Technology Co. Ltd (CNVD-2020-68563)
TEMMOKUMVC is Pizhou Tianmu Network Technology Co., Ltd. developed a professional PHP + MYSQL products, using the independent MVC framework for large and small and medium-sized enterprises of the open source MVC. Pizhou Tianmu Network Technology Co., Ltd TEMMOKUMVC SQL injection vulnerability,...