Astra Linux – Vulnerability in Python-Django

In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with appropriately crafted file names...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop cdesigner versions prior to 3.1.9, which originates from SQL...

PT-2023-21559 · Opensips · Opensis

Name of the Vulnerable Software and Affected Versions: OpenSIPS versions prior to 3.1.9 and 3.2.6 Description: OpenSIPS is a Session Initiation Protocol SIP server implementation. If the ds is in list function is used with an invalid IP address string, OpenSIPS will attempt to print a string from...

phpMyFAQ 安全漏洞

phpMyFAQ is a multilingual, fully database-driven FAQ system by Thorsten Rinne, an individual developer. A security vulnerability exists in phpMyFAQ versions prior to 3.1.9, which stems from the absence of a "secure" attribute for sensitive cookies in HTTPS sessions...

phpMyFAQ 跨站脚本漏洞

phpMyFAQ is a multi-language, fully database-driven FAQ system from the individual developer Thorsten Rinne. A security vulnerability exists in phpMyFAQ versions prior to 3.1.9. An attacker exploited the vulnerability to perform cross-site scripting attacks...

CVE-2017-17384

ISPConfig 3.x before 3.1.9 allows remote authenticated users to obtain root access by creating a crafted cron job...

CVE-2012-0038

Integer overflow in the xfsaclfromdisk function in fs/xfs/xfsacl.c in the Linux kernel before 3.1.9 allows local users to cause a denial of service panic via a filesystem with a malformed ACL, leading to a heap-based buffer overflow...