4 matches found
CVE-2026-42845 Grav: Anonymous Page Content Overwrite via Form File Upload filename Override
The form plugin for Grav adds the ability to create and use forms. Prior to 9.1.0 , there is an unauthenticated page-content overwrite via file upload GHSA-w4rc-p66m-x6qq. Public form uploads now strip path components from the POST-supplied filename and hard-block page-content extensions md, yaml...
Interplanetary Overlay Network 安全漏洞
Interplanetary Overlay Network is an open-source implementation of a delay-tolerant network at NASA Jet Propulsion Laboratory. A security vulnerability exists in Interplanetary Overlay Network version 4.1.3s, which stems from a failure to properly convert unsigned integers to signed integers when...
PT-2024-16295 · Μd3Tn · Μd3Tn
Name of the Vulnerable Software and Affected Versions: µD3TN version 0.14.0 Description: The issue is related to a reachable assertion in the BPv7 parser, which can be triggered by an attacker using a malformed Extension Block, potentially disrupting the service. Recommendations: For version...
USN-6939-1 exim4 vulnerability
Phillip Szelat discovered that Exim misparses multiline MIME header filenames. A remote attacker could use this issue to bypass a MIME filename extension-blocking protection mechanism and possibly deliver executable attachments to the mailboxes of end users...