Lucene search
K

5 matches found

Snyk
Snyk
added 2026/05/07 4:39 p.m.9 views

Symlink Attack

Overview bentoml is a BentoML: Build Production-Grade AI Applications Affected versions of this package are vulnerable to Symlink Attack via the build packaging workflow. An attacker can access sensitive files from the build host by introducing crafted symlinks in the build context, which are...

6.7CVSS5.8AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2024/01/02 8:15 p.m.5 views

CVE-2024-0191

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/uploads/. The manipulation leads to file and directory information exposure. It is possible to launch the attack remotely. The exploit...

5.3CVSS4.8AI score0.00784EPSS
Exploits1References3
OSV
OSV
added 2023/12/11 2:15 p.m.19 views

UBUNTU-CVE-2023-6194

In Eclipse Memory Analyzer versions 0.7 to 1.14.0, report definition XML files are not filtered to prohibit document type definition DTD references to external entities. This means that if a user chooses to use a malicious report definition XML file containing an external entity reference to...

7.1CVSS5.8AI score0.00306EPSS
Exploits1References5
Prion
Prion
added 2018/01/19 5:29 p.m.22 views

Design/Logic Flaw

Vulnerability in Apache Hadoop 0.23.x, 2.x before 2.7.5, 2.8.x before 2.8.3, and 3.0.0-alpha through 3.0.0-beta1 allows a cluster user to expose private files owned by the user running the MapReduce job history server process. The malicious user can construct a configuration file containing XML...

4CVSS6.8AI score0.0221EPSS
Exploits1References1Affected Software1
Exploit DB
Exploit DB
added 2001/06/13 12:0 a.m.19 views

SiteWare 2.5/3.0/3.1 Editor Desktop - Directory Traversal

source: https://www.securityfocus.com/bid/2868/info Screaming Media is a provider for custom web content. SiteWare Editor Desktop is the web-based administration tool for managing Screaming Media content. SiteWare Editor Desktop is prone to directory traversal attacks which can lead to disclosure...

7.4AI score
Exploits0
Rows per page
Query Builder