4 matches found
RHEL 8 : php-pear (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ArchiveTar: improper filename sanitization leads to file overwrites CVE-2020-28949 - ArchiveTar through...
Oracle Linux 7 : qemu (ELSA-2018-4313)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-4313 advisory. - usb-mtp: outlaw slashes in filenames Gerd Hoffmann Orabug: 29037012 CVE-2018-16867 - lsi53c895a: check message length value is valid Prasad J Pandit Orabug:...
RHEL 8 : php:7.4 (RHSA-2022:6542)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6542 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: ArchiveTar: allows an unserialization...
BigTree 4.2.8 Object Injection / Improper Filename Sanitization
Security Advisory - Curesec Research Team 1. Introduction Affected Product: BigTree 4.2.8 Fixed in: BigTree 4.2.9 Fixed Version Link: https://www.bigtreecms.org/download/ Vendor Website: https://www.bigtreecms.org/ Vulnerability Type: Object Injection & Improper Filename Sanitation Remote...