5 matches found
CVE-2025-1644
A vulnerability classified as problematic has been found in Benner ModernaNet up to 1.2.0. Affected is an unknown function of the file /DadosPessoais/SGGravar. The manipulation of the argument idItAg leads to cross-site request forgery. It is possible to launch the attack remotely. Upgrading to...
PT-2023-30526 · Pimcore · Pimcore Admin Classic Bundle
Name of the Vulnerable Software and Affected Versions: Pimcore Admin Classic Bundle versions prior to 1.2.1 Description: The issue allows an attacker to see the path to the webroot/file, which can be used in conjunction with other vulnerabilities, such as SQL Injection using the load file query, ...
PT-2022-27870 · Docconv · Docconv
Name of the Vulnerable Software and Affected Versions: docconv versions prior to 1.2.1 Description: A critical issue affects the function ConvertPDFImages of the file pdf ocr.go. The manipulation of the argument path leads to os command injection. The attack can be initiated remotely...
PT-2017-16779
Name of the Vulnerable Software and Affected Versions rubyzip gem versions prior to 1.2.1 Description The Zip::File component in the rubyzip gem has a directory traversal vulnerability. If a site allows uploading of .zip files, an attacker can upload a malicious file that uses ../ pathname...
PT-2007-3035 · Netsieben · Netsieben Ssh Library
Name of the Vulnerable Software and Affected Versions: NetSieben SSH Library ne7ssh versions prior to 1.2.1 Description: The issue is related to a buffer overflow in the Ne7sshSftp::addOpenHandle function, which can be triggered by user-assisted remote SFTP servers. This can cause a denial of...