3 matches found
CVE-2022-41958
super-xray is a web vulnerability scanning tool. Versions prior to 0.7 assumed trusted input for the program config which is stored in a yaml file. An attacker with local access to the file could exploit this and compromise the program. This issue has been addressed in commit 4d0d5966 and will be...
CVE-2022-41958 Deserialization Vulnerability by yaml config input in super-xray
super-xray is a web vulnerability scanning tool. Versions prior to 0.7 assumed trusted input for the program config which is stored in a yaml file. An attacker with local access to the file could exploit this and compromise the program. This issue has been addressed in commit 4d0d5966 and will be...
CVE-2022-41958
CVE-2022-41958 affects the web vulnerability scanning tool super-xray . Versions prior to 0.7 stored configuration (YAML) that could be attacked by an attacker with local access to the file, enabling a compromise of the program. The issue is addressed in commit 4d0d5966 and will be included in fu...