EulerOS 2.0 SP13 : httpd (EulerOS-SA-2026-1278)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exe...

Vulnerability of Python software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information

The vulnerability exists in the Python CGIHTTPServer module due to incorrect handling of URL-encoded path separators. Exploiting this vulnerability allows attackers to obtain the original CGI script code or execute any CGI script in the server’s web directory...

Gentoo Security Advisory GLSA 200409-08 (dev-lang/ruby)

The remote host is missing updates announced in advisory GLSA 200409-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

bizdb1-search.cgi located

BizDB is a web database integration product using Perl CGI scripts. One of the scripts, bizdb-search.cgi, passes a variable's contents to an unchecked open call and can therefore be made to execute commands at the privilege level of the webserver. The variable is dbname, and if passed a semicolon...