4 matches found
PT-2025-5021 · Unknown · Eugen Bobrowski Debug Tool
Name of the Vulnerable Software and Affected Versions: Eugen Bobrowski Debug Tool versions n/a through 2.2 Description: The issue is related to a Missing Authorization vulnerability in the Eugen Bobrowski Debug Tool, which allows exploiting incorrectly configured access control security levels...
PT-2023-15887 · Unknown · Nflpick-Em.Com
Name of the Vulnerable Software and Affected Versions: nflpick-em.com versions up to 2.2.x Description: A problematic vulnerability was found in nflpick-em.com, affecting the Load Users function of the file html/includes/runtime/admin/JSON/LoadUsers.php. The manipulation of the sort argument lead...
CVE-2015-6576: Deserialisation Resulting in Remote Code Execution Vulnerability
Bamboo had a resource that deserialised arbitrary user input without restriction. Attackers can use this vulnerability to execute Java code of their choice on systems that have a vulnerable version of Bamboo. To exploit this issue, attackers need to be able to access the Bamboo web interface...
Advisory: exmh symlink vulnerability
Author: Stan Bubrouski [email protected] Date: December 31, 2000 Package: exmh Versions affected: 2.2 and probably previous versions. Severity: A malicious local user could use a symlink attack to overwrite any file writable by the user executing exmh. Problem: When exmh detects a problem at start...