36 matches found
EUVD-2018-7361
Malware in sbrugna...
EUVD-2018-7363
Malware in sbrugna...
EUVD-2018-7364
Malware in sbrugna...
EUVD-2018-7362
Malware in sbrugna...
EUVD-2025-21180
Malicious code in bioql PyPI...
CVE-2025-7452 kone-net go-chat Endpoint file_controller.go GetFile path traversal
A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/filecontroller.go of the component Endpoint. The manipulation of the argument fileName leads t...
CVE-2025-7452
CVE-2025-7452 affects kone-net go-chat (Endpoint component). The GetFile function in go-chat/api/v1/file_controller.go is vulnerable to path traversal via the fileName argument, allowing remote exploitation. Exploitation is disclosed publicly; credits indicate a Proof-of-Concept. The rolling-rele...
CVE-2025-7452 kone-net go-chat Endpoint file_controller.go GetFile path traversal
A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/filecontroller.go of the component Endpoint. The manipulation of the argument fileName leads t...
PT-2025-29271 · Unknown · Kone-Net Go-Chat
Name of the Vulnerable Software and Affected Versions: kone-net go-chat affected versions not specified Description: A critical issue exists in the Endpoint component of kone-net go-chat. The GetFile function within go-chat/api/v1/file controller.go is susceptible to path traversal due to...
Malicious code in @kone-ds/webcomponents-react (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-1692 Malicious code in @kone-ds/webcomponents-react (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @kone-ds/tokens (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2018-15483
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Denial of Service can occur through the open HTTP interface, aka KONE-04...
CVE-2018-15486
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02...
CVE-2018-15484
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Unauthenticated Remote Code Execution is possible through the open HTTP interface by modifying autoexec.bat, aka KONE-01...
CVE-2018-15483
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Denial of Service can occur through the open HTTP interface, aka KONE-04...
CVE-2018-15485
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. FTP does not require authentication or authorization, aka KONE-03...
CVE-2018-15486
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02...
CVE-2018-15485
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. FTP does not require authentication or authorization, aka KONE-03...
CVE-2018-15484
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Unauthenticated Remote Code Execution is possible through the open HTTP interface by modifying autoexec.bat, aka KONE-01...