15 matches found
EUVD-2008-7182
Malware in sbrugna...
CVE-2023-1881
Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.3...
SUSE CVE-2024-8975
Unquoted Search Path or Element vulnerability in Grafana Alloy on Windows allows Privilege Escalation from Local User to SYSTEM This issue affects Alloy: before 1.3.3, from 1.4.0-rc.0 through 1.4.0-rc.1...
Grafana Alloy 安全漏洞
Grafana Alloy is an open source OpenTetry Collector distribution of Grafana Open Source. A security vulnerability exists in Grafana Alloy versions prior to 1.3.3 that stems from an unquoted search path or element vulnerability that allows elevation of privilege...
CVE-2023-1081
Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.3...
GHSA-2RPM-4X8C-PVQG Improper Limitation of a Pathname to a Restricted Directory in Zip4j
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ dot dot slash in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'...
PT-2022-17917 · Unknown · Abantecart
Name of the Vulnerable Software and Affected Versions: Abantecart versions prior to 1.3.3 Description: The issue allows remote authenticated administrators to execute arbitrary code by uploading an executable file. This is possible because the CatalogMedia ManagerImages settings can be changed by...
CVE-2020-24639
There is a vulnerability caused by unsafe Java deserialization that allows for arbitrary command execution in a containerized environment within Airwave Glass before 1.3.3. Successful exploitation can lead to complete compromise of the underlying host operating system...
Intel Active Management Technology Access Control Error Vulnerability
Intel Active Management Technology AMT is a set of hardware-based computer remote active management technology software from Intel Intel. An Access Control Error vulnerability exists in Intel Active Management Technology versions prior to 1.3.3, which arises from a network system or product that...
GHSA-7X9J-7223-RG5M Improper Access Control in commons-fileupload
Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution...
zip4j directory traversal vulnerability
zip4j is a Java-based library for compression/decompression . A directory traversal vulnerability exists in zip4j versions prior to 1.3.3. The vulnerability can be exploited to write arbitrary files with a specially crafted zip archive file with a directory traversal name...
DEBIAN-CVE-2016-1000031
Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution...
PT-2016-5899 · Kde +2 · Libksba +2
Name of the Vulnerable Software and Affected Versions: Libksba versions prior to 1.3.3 Description: The issue arises from improper handling of decoder stack overflows in the ber-decoder.c file, allowing remote attackers to cause a denial of service abort by sending crafted BER data...
UBUNTU-CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
CVE-2010-3871
Cross-site scripting XSS vulnerability in blocktype/groupviews/theme/raw/groupviews.tpl in Mahara before 1.3.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information...