8 matches found
EUVD-1999-0166
Malware in sbrugna...
The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center involves the possibility of bypassing access-controlled directories, allowing attackers to influence the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center involves the possibility of bypassing access-controlled directories. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, integrity, and accessibility of protected...
The vulnerability of the command-line interface of FortiWeb web applications relates to incorrect path name restrictions for access-controlled directories. This allows attackers to delete any files from the file system on the vulnerable device.
The vulnerability of the command-line interface of FortiWeb web applications is related to incorrect path name restrictions for access to restricted directories. Exploiting this vulnerability could allow a malicious actor to delete any files from the file system of the vulnerable device remotely...
CVE-2022-45129
Payara before 2022-11-04, when deployed to the root context, allows attackers to visit META-INF and WEB-INF, a different vulnerability than CVE-2022-37422. This affects Payara Platform Community before 4.1.2.191.38, 5.x before 5.2022.4, and 6.x before 6.2022.1, and Payara Platform Enterprise befo...
The vulnerability of the extract and extractall functions in the tarfile module of the Python interpreter allows a hacker to execute arbitrary code.
The vulnerability of the extract and extractall functions in the tarfile module of the Python interpreter is related to incorrect pathname restrictions for restricted access directories. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent exists due to errors in path name restrictions for restricted access directories. This allows attackers to disclose protected information.
The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent exists due to errors in path name restrictions for restricted access directories. Exploiting this vulnerability could allow a attacker to disclose protected information...
PT-2018-12614 · Thomson Reuters · Thomson Reuters Ultratax Cs
Name of the Vulnerable Software and Affected Versions: Thomson Reuters UltraTax CS version 2017 Description: The software has a password protection option, but the level of protection may not meet some customers' expectations because the data is stored in cleartext. Customer data is stored in...
CVE-2001-1512
Summary of CVE-2001-1512 / CVE-2000-1050 cluster (Allaire JRun) Concrete details in connected docs show affected products as Allaire JRun 3.0 and 3.1. CVE-2000-1050 describes an information-disclosure/remote-access issue where the JRun HTTP servlet server can expose the WEB-INF directory via a cr...