CVE-2023-49801

CVE-2023-49801 describes a vulnerability in Lif Auth Server affecting the get_pfp and get_banner routes. The issue arises from missing validation of the files delivered through these URLs, potentially allowing an attacker to access files they should not access. Multiple connected sources confirm ...

CVE-2023-49801 Lif Auth Server vulnerable to uncontrolled data in path expression

Lif Auth Server is a server for validating logins, managing information, and account recovery for Lif Accounts. The issue relates to the getpfp and getbanner routes on Auth Server. The issue is that there is no check to ensure that the file that Auth Server is receiving through these URLs is...

CVE-2023-49801 Lif Auth Server vulnerable to uncontrolled data in path expression

Lif Auth Server is a server for validating logins, managing information, and account recovery for Lif Accounts. The issue relates to the getpfp and getbanner routes on Auth Server. The issue is that there is no check to ensure that the file that Auth Server is receiving through these URLs is...

CVE-2023-49801 Lif Auth Server vulnerable to uncontrolled data in path expression

Lif Auth Server is a server for validating logins, managing information, and account recovery for Lif Accounts. The issue relates to the getpfp and getbanner routes on Auth Server. The issue is that there is no check to ensure that the file that Auth Server is receiving through these URLs is...

CVE-2024-22206

Clerk/Next.js vulnerability CVE-2024-22206: a logic flaw in auth() (App Router) or getAuth() (Pages Router) could allow unauthorized access or privilege escalation. Affected versions are all that use @clerk/nextjs prior to the fix, with remediation provided by upgrading to @clerk/nextjs v4.29.3. ...

PT-2024-13803 · Unknown · Lif Auth Server

Name of the Vulnerable Software and Affected Versions: Lif Auth Server versions prior to 1.4.0 Description: The issue relates to the get pfp and get banner routes on Auth Server, where there is no check to ensure that the file received through these URLs is correct. This could allow an attacker...

Official Clerk JavaScript SDKs Security Vulnerabilities

Official Clerk JavaScript SDKs is an official Javascript repository for Clerk authentication open-sourced by Clerk. A security vulnerability exists in the Official Clerk JavaScript SDKs version 4.7.0 up to and including 4.29.3, which stems from a logic flaw in auth in App Router or getAuth in Pag...

Authenticated (user role) remote command execution by modifying `nginx` settings (GHSL-2023-269)

Summary The Home Preference page exposes a small list of nginx settings such as Nginx Access Log Path and Nginx Error Log Path. However, the API also exposes testconfigcmd, reloadcmd and restartcmd. While the UI doesn't allow users to modify any of these settings, it is possible to do so by sendi...

CVE-2023-6554

When access to the "admin" folder is not protected by some external authorization mechanisms e.g. Apache Basic Auth, it is possible for any user to download protected information like exam answers...

CVE-2023-6554

When access to the "admin" folder is not protected by some external authorization mechanisms e.g. Apache Basic Auth, it is possible for any user to download protected information like exam answers...

Design/Logic Flaw

When access to the "admin" folder is not protected by some external authorization mechanisms e.g. Apache Basic Auth, it is possible for any user to download protected information like exam answers...

CVE-2023-6554

CVE-2023-6554 affects Tecnick TCExam (admin folder). The root cause is insufficient external authorization protection in the admin directory, allowing any user to download protected information such as exam answers when access is not gated by mechanisms like Apache Basic Auth. Impact is confident...

PT-2024-15540 · Deshang · Deshang Dsshop

Name of the Vulnerable Software and Affected Versions: DeShang DSShop versions up to 2.1.5 Description: A critical vulnerability was found in DeShang DSShop, affecting an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the member info argument leads to pat...

CVE-2023-39655

A host header injection vulnerability exists in the NPM package @perfood/couch-auth versions = 0.20.0. By sending a specially crafted host header in the forgot password request, it is possible to send password reset links to users which, once clicked, lead to an attacker-controlled server and thu...

Design/Logic Flaw

A host header injection vulnerability exists in the NPM package @perfood/couch-auth versions = 0.20.0. By sending a specially crafted host header in the forgot password request, it is possible to send password reset links to users which, once clicked, lead to an attacker-controlled server and thu...

CVE-2023-39655

The CVE-2023-39655 issue concerns the NPM package @perfood/couch-auth (versions

alastria-auth (>=0.0.3 <=0.0.17), alastria-identity (>=0.2.0 <=0.4.0) +36 more potentially affected by CVE-2023-6681 via jwcrypto (>=0.4.0 <=1.5.0)

jwcrypto PYPI version =0.4.0, =0.0.3, =0.2.0, =0.4.0a0, =2.0.0, =0.1.0, =0.1.0, =0.1.0.2, =2.5.6, =0.6.0, =0.1.0, =0.0.0.1, =2.5.0, =0.1.0, =0.1.0, =0.14.1 and more Source cves: CVE-2023-6681 Source advisory: OSV:GHSA-CW2R-4P82-QV79...

PT-2023-26359 · Opennds +1 · Opennds +1

Name of the Vulnerable Software and Affected Versions: OpenNDS versions prior to 4.17.0.12 Description: The issue allows remote attackers to cause a denial of service through a GET request to "/opennds auth/" that lacks a custom query string parameter and client-token, resulting in a NULL pointer...

TOTOLINK EX1800T 安全漏洞

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setWiFiExtenderConfig interface, which originates from the apcliAuthMode parameter of the cstecgi .cgi's setWiFiExtenderConfig interface that fai...

yii2 security vulnerabilities

yii2 is a fast, secure and professional PHP framework. A security vulnerability exists in yii2-authclient versions prior to 2.2.15 that stems from vulnerability to cross-site request forgery CSRF attacks...