24 matches found
EUVD-2012-2727
Malware in sbrugna...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inadequate checking of the canmapfrag function...
dottie 安全漏洞
dottie is an application from Mick Hansen's personal developer that makes it easy to find nested keys. A security vulnerability exists in versions prior to dottie 2.0.4, which stems from inadequate checking and vulnerability to prototype contamination...
Design/Logic Flaw
The Simple Membership WordPress plugin before 4.1.3 allows user to change their membership at the registration stage due to insufficient checking of a user supplied parameter...
Directory Traversal in Archive_Tar
Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948. :exclamation: Note: There was an initial fix for this vulnerability made in version 1.4.12. That fix introduced a bug which was...
Fedora 32 : 1:php-pear (2021-02996612f6)
The remote Fedora 32 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-02996612f6 advisory. - Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to...
CVE-2020-36193
Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948...
CVE-2020-36193
Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948...
CVE-2020-36193
Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948...
Allows write operations with Directory Traversal due to inadequate checking of symbolic links
Disallow symlinks to out-of-path filenames...
CVE-2018-19046
keepalived 2.0.8 didn't check for existing plain files when writing data to a temporary file upon a call to PrintData or PrintStats. If a local attacker had previously created a file with the expected name e.g., /tmp/keepalived.data or /tmp/keepalived.stats, with read access for the attacker and...
Joomla! Open Redirect Vulnerability
Joomla is prone to an open redirect vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; ifdescription...
[20150601] - Core - Open Redirect
Inadequate checking of the return value allowed to redirect to an external page...
Joomla! -- Core - Remote File Execution/Denial of Service vulnerabilities
The JSST and the Joomla! Security Center report: 20140903 - Core - Remote File Inclusion Inadequate checking allowed the potential for remote files to be executed. 20140904 - Core - Denial of Service Inadequate checking allowed the potential for a denial of service attack...
[20140903] - Core - Remote File Inclusion
Inadequate checking allowed the potential for remote files to be executed...
[20140904] - Core - Denial of Service
Inadequate checking allowed the potential for a denial of service attack...
Joomla! -- Core - Unauthorized Login vulnerability
The JSST and the Joomla! Security Center report: 20140902 - Core - Unauthorized Logins Inadequate checking allowed unauthorized logins via LDAP authentication...
[20140902] - Core - Unauthorised Logins
Inadequate checking allowed unauthorised logins via LDAP authentication...
[20140304] - Core - Unauthorised Logins
Inadequate checking allowed unauthorised logins via GMail authentication...
CVE-2012-2747
Technical details about CVE-2012-2747 are not provided in the supplied documents; no affected versions, root cause, or remediation details are disclosed. Monitor for updates.