7 matches found
EUVD-2023-0612
Malicious code in bioql PyPI...
CVE-2018-3715
creationtimestamp| type| source ---|---|--- 2023-02-13 07:29:32+00:00| seen| https://t.me/cibsecurity/57985 2023-02-13 07:42:44+00:00| seen| https://t.me/VulnerabilityNews/31774 2025-03-21 15:19:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8356...
GHSA-3HJH-5HGX-F5WH Path traversal vulnerability in glance
Versions of the package glance before 3.0.9 are vulnerable to Directory Traversal that allows users to read files outside the public root directory. This is related to but distinct from the vulnerability reported in CVE-2018-3715...
uncanny (>=0.2.0 <=0.2.3) potentially affected by CVE-2018-3715 via glance (>=0.2.7 <=1.0.0)
glance NPM version =0.2.7, =0.2.0, =0.2.3 Source cves: CVE-2018-3715 Source advisory: OSV:GHSA-2X4Q-6JFV-8H9H...
CVE-2018-3715
glance node module before 3.0.4 suffers from a Path Traversal vulnerability due to lack of validation of path passed to it, which allows a malicious user to read content of any file with known path...
CVE-2018-3715
The CVE-2018-3715 entry is supported by multiple connected records showing a Path Traversal vulnerability in the npm package glance. Affected versions are before 3.0.9 (Red Hat/OSV notes) with related advisories indicating the root cause is lack of validation of the requested path, allowing a mal...
CVE-2018-3715
glance node module before 3.0.4 suffers from a Path Traversal vulnerability due to lack of validation of path passed to it, which allows a malicious user to read content of any file with known path...