27 matches found
EUVD-2024-51411
Malicious code in bioql PyPI...
EUVD-2024-51414
Malicious code in bioql PyPI...
EUVD-2024-51412
Malicious code in bioql PyPI...
EUVD-2024-51413
Malicious code in bioql PyPI...
CVE-2024-13191
A vulnerability, which was classified as critical, has been found in ZeroWdd myblog 1.0. This issue affects the function upload of the file src/main/java/com/wdd/myblog/controller/admin/uploadController.java. The manipulation of the argument file leads to unrestricted upload. The attack may be...
CVE-2024-13190
A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument findBlogList/getTotalBlogs leads to xml injection. The attack can be initiated remotely. The explo...
CVE-2024-13192
A vulnerability, which was classified as problematic, was found in ZeroWdd myblog 1.0. Affected is the function update of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-13189
A vulnerability classified as critical has been found in ZeroWdd myblog 1.0. This affects an unknown part of the file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java. The manipulation leads to permission issues. It is possible to initiate the attack remotely. The exploit has been disclos...
CVE-2024-13192
A vulnerability, which was classified as problematic, was found in ZeroWdd myblog 1.0. Affected is the function update of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-13191
A vulnerability, which was classified as critical, has been found in ZeroWdd myblog 1.0. This issue affects the function upload of the file src/main/java/com/wdd/myblog/controller/admin/uploadController.java. The manipulation of the argument file leads to unrestricted upload. The attack may be...
CVE-2024-13192 ZeroWdd myblog BlogController.java update cross site scripting
A vulnerability, which was classified as problematic, was found in ZeroWdd myblog 1.0. Affected is the function update of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-13192
ZeroWdd myblog 1.0 contains a cross-site scripting vulnerability in the update function of BlogController.java. The issue allows remote exploitation and the exploit has been publicly disclosed; multiple connected sources validate the CVE-2024-13192 details. No official patch/version is stated in ...
CVE-2024-13192 ZeroWdd myblog BlogController.java update cross site scripting
A vulnerability, which was classified as problematic, was found in ZeroWdd myblog 1.0. Affected is the function update of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-13191 ZeroWdd myblog uploadController.java upload unrestricted upload
A vulnerability, which was classified as critical, has been found in ZeroWdd myblog 1.0. This issue affects the function upload of the file src/main/java/com/wdd/myblog/controller/admin/uploadController.java. The manipulation of the argument file leads to unrestricted upload. The attack may be...
CVE-2024-13191 ZeroWdd myblog uploadController.java upload unrestricted upload
A vulnerability, which was classified as critical, has been found in ZeroWdd myblog 1.0. This issue affects the function upload of the file src/main/java/com/wdd/myblog/controller/admin/uploadController.java. The manipulation of the argument file leads to unrestricted upload. The attack may be...
CVE-2024-13191
CVE-2024-13191 affects ZeroWdd myblog 1.0, specifically the upload function in src/main/java/com/wdd/myblog/controller/admin/uploadController.java. The root cause is manipulation of the file argument, resulting in unrestricted uploads. The vulnerability is exploitable remotely and, per sources, t...
CVE-2024-13190
A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument findBlogList/getTotalBlogs leads to xml injection. The attack can be initiated remotely. The explo...
CVE-2024-13190 ZeroWdd myblog BlogMapper.xml xml injection
A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument findBlogList/getTotalBlogs leads to xml injection. The attack can be initiated remotely. The explo...
CVE-2024-13190 ZeroWdd myblog BlogMapper.xml xml injection
A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument findBlogList/getTotalBlogs leads to xml injection. The attack can be initiated remotely. The explo...
CVE-2024-13190
CVE-2024-13190 affects ZeroWdd myblog 1.0, specifically the file src/main/resources/mapper/BlogMapper.xml. The vulnerability arises from manipulation of the findBlogList and getTotalBlogs arguments, leading to XML Injection. It is a network-origin vulnerability with low privileges required, no us...