CVE-2021-38465

The CVE-2021-38465 issue affects Auvesy Versiondog’s webinstaller (a Golang web server used to generate an Auvesy image agent). The root cause is uncontrolled resource consumption: generating many installations can cause unlimited, temp-folder storage growth, enabling denial of service through re...

Emerson WirelessHART Gateway 路径遍历漏洞

The Emerson WirelessHART Gateway is a wireless gateway from Emerson Corporation. A path traversal vulnerability exists in the Emerson WirelessHART Gateway that stems from improper handling of the structure of the supplied backup folder. An attacker could use this vulnerability to cause directory...

NewSoftwares Folder Lock 跨站脚本漏洞

Folder Lock is a perfect data security application from NewSoftwares, Inc. Folder Lock is vulnerable to a cross-site scripting vulnerability in v3.4.5, which stems from the " Create Folder" function under the "Create" module lacks a data validation filter for user-supplied data and output. An...

Emerson WirelessHART Gateway 安全漏洞

The Emerson WirelessHART Gateway is a wireless gateway from Emerson USA. A security vulnerability exists in Emerson WirelessHART Gateway that stems from the susceptibility of the affected product to an unsterilized system configuration unzipped folder. An attacker could exploit the vulnerability ...

PT-2021-22139 · Auvesy · Auvesy Webinstaller

Name of the Vulnerable Software and Affected Versions: Auvesy webinstaller affected versions not specified Description: The issue concerns a Golang web server executable used for generating an Auvesy image agent. It allows for resource consumption by creating a large number of installations that...

AUVESY Versiondog Resource Management Error Vulnerability (CNVD-2021-82925)

AUVESY Versiondog is an automated production data and change management software solution from AUVESY Germany. a resource management error vulnerability exists in AUVESY Versiondog, which could be exploited by an attacker to consume resources by generating a large number of installations, which...

AUVESY Versiondog 资源管理错误漏洞

AUVESY Versiondog is an automated production data and change management software solution from AUVESY Germany. a resource management error vulnerability exists in AUVESY Versiondog, which could be exploited by an attacker to consume resources by generating a large number of installations, which...

CVE-2021-41152

OpenOlat is a web-based e-learning platform for teaching, learning, assessment and communication, an LMS, a learning management system. In affected versions by manipulating the HTTP request an attacker can modify the path of a requested file download in the folder component to point to anywhere o...

Cross-Site Request Forgery (CSRF) in flatcore/flatcore-cms

Description 1 Missing CSRF token in delete posts and delete folder in the frontend 2 Missing backend CSRF validation in 1 removing and enabling fix status and 2 deleting posts, and 3 delete folder and 4 delexclude in the indexing page see Permalinks 3 Delete cache Proof of Concept Open in...

CVE-2021-40887

Projectsend version r1295 is affected by a directory traversal vulnerability. Because of lacking sanitization input for files parameter, an attacker can add ../ to move all PHP files or any file on the system that has permissions to /upload/files/ folder...

Directory traversal

Projectsend version r1295 is affected by a directory traversal vulnerability. Because of lacking sanitization input for files parameter, an attacker can add ../ to move all PHP files or any file on the system that has permissions to /upload/files/ folder...

ProjectSend 路径遍历漏洞

A directory traversal vulnerability exists in ProjectSend version r1295, a free, customer-facing private file sharing Web application. The vulnerability stems from a lack of validation of the input to the files parameter. An attacker could exploit the vulnerability by adding ... /upload/files/...

in bookstackapp/bookstack

Description The dompdf chroot option in Bookstack App is set to basepath, which is the Laravel root folder /var/www/bookstack. An attacker can hence load any image file in the Laravel folder /var/www/bookstack or its subdirectories via PDF exports. Proof of Concept 1: Place an image file in...

Authorization

Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in...

CVE-2021-41976 Tad Uploader - Improper Authorization

Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in...

Tad Uploader 访问控制错误漏洞

Tad Uploader is a file upload management module from the individual developers of Tad in Taiwan, China.An authorization issue vulnerability exists in Tad Uploader, which could be exploited by remote attackers to modify the names of folders in a booklist using this feature without logging in...

PT-2021-23464 · Unknown · Tad Uploader

Name of the Vulnerable Software and Affected Versions: Tad Uploader affected versions not specified Description: The Tad Uploader edit book list function is vulnerable to authorization bypass. This allows remote attackers to amend the folder names in the book list without logging in...

Local File Dislocusure to Browse All Files in /atlassian-bamboo

This vulnerability affects certain versions of Atlassian Bamboo. Attacker can craft URL to browse all files inside /atlassian-bamboo at Bamboo installation folder, which includes files at WEB-INF folder...

Local File Dislocusure to Browse All Files in /atlassian-bamboo

This vulnerability affects certain versions of Atlassian Bamboo. Attacker can craft URL to browse all files inside /atlassian-bamboo at Bamboo installation folder, which includes files at WEB-INF folder...

CVE-2021-26556

When Octopus Server is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access...