Code injection

A vulnerability classified as problematic was found in rmountjoy92 DashMachine 0.5-4. Affected by this vulnerability is an unknown functionality of the file /settings/saveconfig of the component Config Handler. The manipulation of the argument valuetemplate leads to code injection. The exploit ha...

CVE-2023-6899 rmountjoy92 DashMachine Config save_config code injection

A vulnerability classified as problematic was found in rmountjoy92 DashMachine 0.5-4. Affected by this vulnerability is an unknown functionality of the file /settings/saveconfig of the component Config Handler. The manipulation of the argument valuetemplate leads to code injection. The exploit ha...

CVE-2023-6899 rmountjoy92 DashMachine Config save_config code injection

A vulnerability classified as problematic was found in rmountjoy92 DashMachine 0.5-4. Affected by this vulnerability is an unknown functionality of the file /settings/saveconfig of the component Config Handler. The manipulation of the argument valuetemplate leads to code injection. The exploit ha...

PT-2023-32808 · Rmountjoy92 · Dashmachine

Name of the Vulnerable Software and Affected Versions: rmountjoy92 DashMachine versions 0.5-4 Description: A problematic issue was found in the Config Handler component, specifically in the /settings/save config file. The manipulation of the value template argument leads to code injection. The...

PT-2023-2189 · Jenkins · Jenkins Convert To Pipeline Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Convert To Pipeline Plugin versions 1.0 and earlier Description: The issue is related to the incorrect handling of code generation in the Convert To Pipeline Plugin, specifically in the Freestyle Project Configuration Handler componen...

CVE-2017-20019

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vulnerability is an unknown functionality of the component Config Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 3.5.3-...

CVE-2017-20019

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vulnerability is an unknown functionality of the component Config Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 3.5.3-...

Prototype Pollution in config-handler

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

GHSA-2W3F-9W3Q-QW77 Prototype Pollution in config-handler

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

CVE-2021-23448

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

CVE-2021-23448

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

CVE-2021-23448

CVE-2021-23448 affects the JavaScript package config-handler. All versions are vulnerable to Prototype Pollution when loading configuration files due to unsafe object merges or path-based property assignment that can modify Object.prototype. Documented impacts include potential DoS or remote code...