3 matches found
📄 MiniCMS 1.11 Exploitation Toolkit
This toolkit focuses on validating and demonstrating the impact of a known and documented design flaw in MiniCMS 1.11 related to its build process CVE-2018-1000638. MiniCMS relies on an insecure build.php script that blindly packages filesystem contents into install.php without enforcing integrit...
EUVD-2024-31871
Malicious code in bioql PyPI...
Astro's server source code is exposed to the public if sourcemaps are enabled
Summary A bug in the build process allows any unauthenticated user to read parts of the server source code. Details During build, along with client assets such as css and font files, the sourcemap files for the server code are moved to a publicly-accessible folder...