5 matches found
EUVD-2023-33983
Malicious code in bioql PyPI...
CVE-2024-29905
DIRAC is an interware, meaning a software framework for distributed computing. Prior to version 8.0.41, during the proxy generation process e.g., when using dirac-proxy-init, it is possible for unauthorized users on the same machine to gain read access to the proxy. This allows the user to then...
Design/Logic Flaw
An issue was discovered in Zimbra Collaboration ZCS 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole extraction to /opt/zimbra/jetty/webapps/zimbra/public that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also,...
CVE-2022-41352
An issue was discovered in Zimbra Collaboration ZCS 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole extraction to /opt/zimbra/jetty/webapps/zimbra/public that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also,...
Anhui Yishang Digital Technology Co., Ltd. two law convergence information sharing platform has ultra vires loopholes
Ltd. is an e-commerce demonstration enterprise, based on the circulation industry to provide e-commerce platform construction, operation and promotion, network marketing, international market development services. The information sharing platform of Anhui Yi Shang Digital Technology Co., Ltd. has...