Lucene search
K

4 matches found

NVD
NVD
added 2025/06/05 1:15 a.m.27 views

CVE-2025-49008

Atheos is a self-hosted browser-based cloud integrated development environment. Prior to version 6.0.4, improper use of escapeshellcmd in /components/codegit/traits/execute.php allows argument injection, leading to arbitrary command execution. Atheos administrators and users of vulnerable version...

9.4CVSS0.00508EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/17 8:2 p.m.17 views

CVE-2025-47788

Atheos is a self-hosted browser-based cloud IDE. Prior to v602, similar to GHSA-rgjm-6p59-537v/CVE-2025-22152, the $target parameter in /controller.php was not properly validated, which could allow an attacker to execute arbitrary files on the server via path traversal. v602 contains a fix for th...

9.4CVSS7.5AI score0.00628EPSS
Exploits0References1
securityvulns
securityvulns
added 2002/02/08 12:0 a.m.31 views

Обхот chroot() в AtheOS (protection bypass)

С помощью обратного пути можно обратиться к файлам за пределами chroot...

1.2AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2002/02/07 12:0 a.m.25 views

AtheOS 0.3.7 - Change Root Directory Escaping

AtheOS 0.3.7 - Change Root Directory Escaping / source: https://www.securityfocus.com/bid/4051/info AtheOS is a freely available, open source operating system. It is distributed under the GPL, and maintained by the AtheOS project. It is possible to escape change rooted directories on AtheOS. Due ...

0.3AI score
Exploits0
Rows per page
Query Builder