7 matches found
EUVD-2021-15670
Malware in sbrugna...
CVE-2024-48766
NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php...
CVE-2024-7034 Remote Code Execution due to Arbitrary File Write in open-webui/open-webui
In open-webui version 0.3.8, the endpoint /models/upload is vulnerable to arbitrary file write due to improper handling of user-supplied filenames. The vulnerability arises from the usage of filepath = f"UPLOADDIR/file.filename" without proper input validation or sanitization. An attacker can...
CVE-2024-39903
Solara is a pure Python, React-style framework for scaling Jupyter and web apps. A Local File Inclusion LFI vulnerability was identified in widgetti/solara, in version 1.35.1, which was fixed in version 1.35.1. This vulnerability arises from the application's failure to properly validate URI...
K14574: PHP vulnerability CVE-2012-1172
Security Advisory Description PHP has been cited with the following vulnerability, which may be locally exploitable on some F5 products: The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid open square bracket characters in name values, which makes it...
Sysax Multi Server 4.3 Remote Arbitrary Delete Files Exploit
No description provided by source. / Sysax Multi Server v4.3 Remote Delete Files. Server FTP. http://www.sysax.com/ ------------------------------------------------------------------------------------- A vulnerability is caused due to an input validation error when handling FTP "DELE" requests...
Microsoft Windows XP2000 - showHelp .CHM File Execution (MS03-004)
Microsoft Windows XP2000 - showHelp .CHM File Execution MS03-004 source: https://www.securityfocus.com/bid/9320/info Microsoft Windows is prone to a security flaw in the implementation of the showHelp function. Microsoft previously released patches that provide security measures to prevent abuse ...