5284 matches found
BIT-AIRFLOW-2022-38170 Overly permissive umask for daemons
In Apache Airflow prior to 2.3.4, an insecure umask was configured for numerous Airflow components when running with the --daemon flag which could result in a race condition giving world-writable files in the Airflow home directory and allowing local users to expose arbitrary file contents via th...
BIT-AIRFLOW-2022-40754 Open Redirect
In Apache Airflow 2.3.0 through 2.3.4, there was an open redirect in the webserver's /confirm endpoint...
BIT-AIRFLOW-2022-43985 Apache Airflow prior to 2.4.2 has an open redirect
In Apache Airflow versions prior to 2.4.2, there was an open redirect in the webserver's /confirm endpoint...
BIT-AIRFLOW-2022-45402 Apache Airflow: Open redirect during login
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
BIT-AIRFLOW-2023-40273 Session fixation in Apache Airflow web interface
The session fixation vulnerability allowed the authenticated user to continue accessing Airflow webserver even after the password of the user has been reset by the admin - up until the expiry of the session of the user. Other than manually cleaning the session database for database session backen...
TEM Opera Plus FM Family Transmitter 35.45 - Remote Code Execution Vulnerability
TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution Vendor: Telecomunicazioni Elettro Milano TEM S.r.l. Product web page: https://www.tem-italy.it Affected version: Software version: 35.45 Webserver version: 1.7 Summary: This new line of Opera plus FM Transmitters combines very high...
TEM Opera Plus FM Family Transmitter 35.45 - XSRF Vulnerability
CSRF Change Forward Power: -------------------------...
Sql injection
EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...
CVE-2024-26262
The CVE-2024-26262 entry concerns EBM Technologies Uniweb/SoliPACS WebServer. The Connected documents confirm a concrete issue: the WebServer’s query function does not properly restrict user input, enabling SQL injection by authenticated regular users. This can lead to reading/modifying/deleting ...
CVE-2024-26262 EBM Technologies Uniweb/SoliPACS WebServer - SQL Injection
EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...
EBM Technologies Uniweb SQL Injection Vulnerability
EBM Technologies Uniweb is a zero footprint universal viewer from EBM Technologies that works in any web browser and supports viewing DICOM and non-DICOM data. An SQL injection vulnerability exists in the EBM Technologies Uniweb/SoliPACS WebServer, which stems from the query function lacking prop...
Exploit for Unrestricted Upload of File with Dangerous Type in Cutephp Cutenews
sadnews CuteNews 2.1.2 - CVE-2019-11447 Proof-Of-Concept POC...
[SECURITY] Fedora 38 Update: python-aiohttp-3.9.3-1.fc38
Python HTTP client/server for asyncio which supports both the client and the server side of the HTTP protocol, client and server websocket, and webservers with middlewares and pluggable routing...
CVE-2024-24263
Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...
CVE-2024-24263
Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...
Double free
Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...
CVE-2024-24263
Lotos WebServer v0.1.1 contains a Use-After-Free (UAF) vulnerability in the function response_append_status_line (file /lotos/src/response.c). Root cause: memory reuse after freeing, enabling potential server instability or crashes. Impact: high availability (per CVSS vector AV:N/AC:L/PR:N/UI:N/S...
CVE-2024-24263
Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...
TP-Link TL-WR740N - UnAuthenticated Directory Transversal Vulnerability
Exploit Title: TP-Link TL-WR740N UnAuthenticated Directory Transversal Exploit Author: Syed Affan Ahmed ZEROXINN Vendor Homepage: http://www.tp-link.com Version: TP-Link TL-WR740n 3.12.11 Build 110915 Rel.40896n Tested on: TP-Link TL-WR740N ---------------------------POC--------------------------...
CVE-2024-24263
Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...