23 matches found
EUVD-2022-3421
Malicious code in bioql PyPI...
EUVD-2022-2527
Malicious code in bioql PyPI...
CVE-2022-30428
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading...
CVE-2022-30427
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal...
Directory Traversal
github.com/gphper/ginadmin is vulnerable to directory traversal. The vulnerability exists in the View function in adminSystemController.go due to lack of sanitization in path value which allows an attacker to gain access outside of the intended directory...
Arbitrary file read in ginadmin
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading. A patch is available on the master branch of the repository...
GHSA-9PG5-3PJC-F8WM Path traversal in ginadmin
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal. A patch is available on the master branch of the repository...
Path traversal in ginadmin
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal. A patch is available on the master branch of the repository...
GHSA-5824-6JFV-XR3R Arbitrary file read in ginadmin
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading. A patch is available on the master branch of the repository...
CVE-2022-30428
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading...
CVE-2022-30427
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal...
CVE-2022-30428
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading...
CVE-2022-30427
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal...
CVE-2022-30428
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading...
CVE-2022-30427
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal...
Directory traversal
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal...
Design/Logic Flaw
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading...
CVE-2022-30427
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal...
CVE-2022-30427
Ginadmin (backend admin platform built on the Gin framework) is affected by CVE-2022-30427 due to an unfiltered incoming path value in the View function, causing directory traversal. A patch is noted on the master branch in the GHSA advisory; other sources corroborate the vulnerability descriptio...
CVE-2022-30428
CVE-2022-30428 affects ginadmin (up to 05-10-2022). The vulnerability arises from an unfiltered incoming path value, allowing an arbitrary file read from the server. Affected component appears to be the admin/system handling path input; the issue enables access to sensitive files, as described co...