CVE-2024-3318

A file path traversal vulnerability was identified in the DelimitedFileConnector Cloud Connector that allowed an authenticated administrator to set arbitrary connector attributes, including the “file“ attribute, which in turn allowed the user to access files uploaded for other sources...

SailPoint Delimited File Connector 安全漏洞

SailPoint Delimited File Connector is a read-only and rule-driven connector from SailPoint. A security vulnerability exists in the SailPoint Delimited File Connector that stems from a file path traversal vulnerability that could allow an authenticated administrator to set arbitrary connector...

ai.catboost:catboost-spark_3.1_2.12 (>=1.0.1 <=1.2.8), ai.chronon:aggregator_2.12 (>=0.0.25 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +1301 more potentially affected by CVE-2021-37404 via org.apache.hadoop:hadoop-common (>=3.0.0 <=3.2.2)

org.apache.hadoop:hadoop-common MAVEN version =3.0.0, =1.0.1, =0.0.25, =0.0.25, =0.0.62, =0.0.25, =0.0.86, =0.0.8, =0.0.6, =0.0.2, =3.34.0.3-1-3.1, =0.0.3, =1.0.0, =1.4.0, =1.5.0 and more Source cves: CVE-2021-37404 Source advisory: OSV:GHSA-RMPJ-7C96-MRG8...

CVE-2017-8085

In Exponent CMS before 2.4.1 Patch 5, XSS in elFinder is possible in framework/modules/file/connector/elfinder.php...