43 matches found
EUVD-2024-19182
Malicious code in bioql PyPI...
CVE-2024-33066
Memory corruption while redirecting log file to any file location with any file name...
CVE-2024-33066 Improper Input Validation in WLAN Resource Manager
Memory corruption while redirecting log file to any file location with any file name...
CVE-2024-33066
CVE-2024-33066 is described in connected sources as a memory corruption flaw caused by improper input validation in the WLAN Resource Manager. Affected component: WLAN Resource Manager on Qualcomm chipsets. The provided documents do not specify affected products/versions, exploitation status, or ...
CVE-2024-21473
Memory corruption while redirecting log file to any file location with any file name...
CVE-2024-21473
CVE-2024-21473 affects Qualcomm chipsets via the Wi‑Fi SON LDB Service. The issue is memory corruption triggered while redirecting a log file to any location/name, due to improper input handling in the LDB service. Documented sources describe potential to execute code in the context of the device...
BIT-GRADLE-2023-35946 Dependency cache path traversal in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development. When Gradle writes a dependency into its dependency cache, it uses the dependency's coordinates to compute a file location. With specially crafted dependency coordinates, Gradle can be made to writ...
Tourism Management System 2.0 Shell Upload Vulnerability
Exploit Title: Tourism Management System v2.0 - Arbitrary File Upload Exploit Author: SoSPiro Vendor Homepage: https://phpgurukul.com Software Link: https://phpgurukul.com/tourism-management-system-free-download/ Version: 2.0 Tested on: Windows 10 Pro Impact: Allows admin to upload all files to t...
Incorrect path displayed when click "open file location”
Type "command prompt" in the search box and click "open file location” the path of the roaming profile on the NAS server is displayed...
InterPhoto 2.3.0 Shell Upload
==================================================================================================================================== | Title : InterPhoto 2.3.0 Persians Remote Shell Upload vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...
CVE-2023-35946
Gradle is a build tool with a focus on build automation and support for multi-language development. When Gradle writes a dependency into its dependency cache, it uses the dependency's coordinates to compute a file location. With specially crafted dependency coordinates, Gradle can be made to writ...
CVE-2023-35946 Dependency cache path traversal in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development. When Gradle writes a dependency into its dependency cache, it uses the dependency's coordinates to compute a file location. With specially crafted dependency coordinates, Gradle can be made to writ...
Heap Buffer Overflow in function gf_isom_box_size at src/isomedia/box_funcs.c:1997
Description Heap Buffer Overflow in function gfisomboxsize at src/isomedia/boxfuncs.c:1997 gpac version git log commit bbca869177585aaca8eb66d8541079e6f364798e HEAD - master, origin/master, origin/HEAD Author: jeanlf Date: Wed Jan 18 11:40:30 2023 +0100 fixed potentially missing last packets in...
PT-2022-23171 · Unknown · Mangadex-Downloader
Name of the Vulnerable Software and Affected Versions: mangadex-downloader versions 1.3.0 through 1.7.2 Description: The issue occurs when using the file: command with a web URL location, causing the mangadex-downloader to attempt to open and read a file on the local disk for each line of website...
WP All Import < 3.6.8 - Admin+ Arbitrary File Upload
The plugin accepts all zip files and automatically extracts the zip file without validating the extracted file type. Allowing high privilege users such as admin to upload an arbitrary file like PHP, leading to RCE As an admin upload a php file containing the palyload zipped along with a valid XML...
Simple School Staff Directory <= 1.1 - Admin+ Arbitrary File Upload
The plugin does not validate uploaded logo pictures to ensure that are indeed images, allowing high privilege users such as admin to upload arbitrary file like PHP, leading to RCE As admin, upload a PHP file via the Add Logo page of the plugin...
Design/Logic Flaw
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 8.7.40, 9.5.25, 10.4.14, 11.1.1, due to the lack of ensuring file extensions belong to configured allowed mime-types, attackers can upload arbitrary data with arbitrary file extensions - however, default...
CVE-2020-9209
CVE-2020-9209 describes a privilege escalation in SMC2.0 where files in a module’s directory are improperly allowed to bypass directory limitations, enabling a crafted malicious file to launch privilege escalation and potentially compromise normal service. Public details in the NVD entry include ...
Directory traversal
An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...
How To Define Page File Size and Placement in Citrix App Layering 4.x
To provide Citrix customers and users a process to define page file size and location when using Citrix App Layering...