1059 matches found
CVE-2024-40744
Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8...
CVE-2024-40745 Extension - tassos.gr - Reflected Cross site scripting vulnerability in Convert Forms component for Joomla < 4.4.8
Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8...
CVE-2024-40745
The CVE-2024-40745 entry concerns a Reflected Cross‑Site Scripting (XSS) vulnerability in the Joomla Convert Forms component, affecting versions prior to 4.4.8. Multiple connected sources (Red Hat, CVE lists, CNVD, CVE records) consistently identify the affected product as the Convert Forms compo...
CVE-2024-40745 Extension - tassos.gr - Reflected Cross site scripting vulnerability in Convert Forms component for Joomla < 4.4.8
Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8...
CVE-2024-40744 Extension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.8
Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8...
CVE-2024-40744
CVE-2024-40744 affects the Joomla extension Convert Forms; versions prior to 4.4.8 are vulnerable. The issue is an unrestricted file upload via a security bypass in the Convert Forms component, enabling potential malicious uploads. The vulnerability is high impact (per CVSS 3.1: AV:N/AC:L/PR:N/UI...
CVE-2024-40744 Extension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.8
Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8...
PT-2024-29023 · Joomla · Convert Forms
Name of the Vulnerable Software and Affected Versions: Convert Forms component for Joomla versions prior to 4.4.8 Description: The issue is related to an unrestricted file upload via a security bypass in the Convert Forms component for Joomla. This allows for potential malicious file uploads...
PT-2024-29024 · Joomla · Joomla Convert Forms
Name of the Vulnerable Software and Affected Versions: Joomla Convert Forms component versions prior to 4.4.8 Description: The issue is related to a Reflected Cross site scripting vulnerability in the Convert Forms component for Joomla. This vulnerability allows for the execution of malicious...
AZL-53634 CVE-2024-11233 affecting package php for versions less than 8.1.31-1
In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, due to an error in convert.quoted-printable-decode filter certain data can lead to buffer overread by one byte, which can in certain circumstances lead to crashes or disclose content of other memory areas...
The vulnerability of the USB-Audio component in the Linux operating system allows a hacker to execute arbitrary code.
The vulnerability of the USB-Audio component in the Linux operating system’s kernel is related to writing beyond the allocated memory buffer in the convertchmap function. Exploiting this vulnerability allows an attacker to execute arbitrary code...
CVE-2024-52397
Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert Docx2post convert-docx2post allows Upload a Web Shell to a Web Server.This issue affects Convert Docx2post: from n/a through = 1.4...
CVE-2024-52397 WordPress Convert Docx2post plugin <= 1.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert Docx2post convert-docx2post allows Upload a Web Shell to a Web Server.This issue affects Convert Docx2post: from n/a through = 1.4...
CVE-2024-52397 WordPress Convert Docx2post plugin <= 1.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert Docx2post convert-docx2post allows Upload a Web Shell to a Web Server.This issue affects Convert Docx2post: from n/a through = 1.4...
PT-2024-35235 · Unknown · Convert Docx2Post
Name of the Vulnerable Software and Affected Versions: Convert Docx2post versions n/a through 1.4 Description: The issue allows an unrestricted upload of files with dangerous types, enabling the upload of a web shell to a web server. This can be exploited by uploading a malicious file to the...
WordPress Convert Docx2post plugin <= 1.4 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by CTRL - Chance Patchstack Alliance in WordPress Plugin Convert Docx2post versions = 1.4...
WordPress Convert Docx2post Plugin <= 1.4 is vulnerable to Arbitrary File Upload
Software Convert Docx2post Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-52397 Patch priority Medium CVSS severity Medium 9.1 Developer Claim ownership PSID 9d8423b2e894 Credits CTRL Chance Required privilege Author...
CVE-2024-49962
...
The vulnerability of the JsonConvert.DeserializeObject method in the .NET Json.NET framework allows a attacker to cause a service failure.
The vulnerability of the JsonConvert.DeserializeObject method in the .NET Json.NET framework is related to insufficient handling of exceptional states. Exploiting this vulnerability may allow an attacker to cause a service failure...
CVE-2024-49228
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Edwin Rivera bVerse Convert bverse-convert allows Stored XSS.This issue affects bVerse Convert: from n/a through = 1.3.7.1...