3 matches found
EUVD-2026-42924
MaxKB is an open-source AI assistant for enterprise. Prior to 2.10.0-lts, MaxKB tool import functionality in apps/tools/serializers/tool.py and MCP referencing mode in apps/application/chatpipeline/step/chatstep/impl/basechatstep.py do not consistently validate MCP transport type, allowing an...
The vulnerability in the web interface for controlling microprogrammed software-based network storage devices STEALTHONE D220, D340, and D440 allows a perpetrator to execute arbitrary commands.
The vulnerability of the web-based interface for managing microprogrammed software-based network storage devices STEALTHONE D220, D340, and D440 is related to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows ...
PT-2024-20577 · Traccar · Traccar
Name of the Vulnerable Software and Affected Versions: Traccar versions prior to 6.0 Description: Traccar is an open source GPS tracking system. The issue allows for path traversal and unrestricted upload of files with dangerous types. Since the system allows registration by default, attackers ca...