EUVD-2022-0712

Malicious code in bioql PyPI...

GHSA-W2PM-R78H-4M7V OS Command Injection in Laravel Framework

OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17...

OS Command Injection

laravel/framework is vulnerable to OS command injection. The vulnerability exists through Filesystem.php where the 'link' function does not properly escape the arguments, allowing an attacker to inject arbitrary OS commands...

Command injection

OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17...

CVE-2020-19316

OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17...

CVE-2020-19316

The CVE-2020-19316 entry describes an OS command injection in Laravel Framework’s Filesystem.php, specifically in the link() function, affecting versions before 5.8.17. Evidence from multiple sources confirms the vulnerability affects Laravel’s file linking logic, enabling an attacker to inject a...

CVE-2020-19316

OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17...

Server: Code execution in /lib/filesystem.php

Incomplete blacklist vulnerability in lib/filesystem.php in ownCloud before 4.0.9 and 4.5.2 allows authenticated remote attackers to execute arbitrary code by uploading a file with a special crafted filename. For more information please consult the official advisory. This advisory is licensed CC...