3 matches found
CVE-2024-2624 Path Traversal and Arbitrary File Upload Vulnerability in parisneo/lollms-webui
A path traversal and arbitrary file upload vulnerability exists in the parisneo/lollms-webui application, specifically within the @router.get"/switchpersonalpath" endpoint in ./lollms-webui/lollmscore/lollms/server/endpoints/lollmsuser.py. The vulnerability arises due to insufficient sanitization...
Design/Logic Flaw
Aquarius CMS through 4.3.5 writes POST and GET parameters including passwords to a log file due to an overwriting of configuration parameters under certain circumstances...
openSUSE Security Update : docker-distribution (openSUSE-2018-336)
This update for docker-distribution fixes the following issues : Security issues fixed : - CVE-2017-11468: Fixed a denial of service memory consumption via the manifest endpoint bsc1049850. Bug fixes : - bsc1083474: docker-distirbution-registry overwrites configuration file with update. -...