org.xmlunit:xmlunit-legacy (>=2.0.0 <=2.0.0-alpha-04), org.xmlunit:xmlunit-matchers (>=2.0.0 <=2.0.0-alpha-04) potentially affected by CVE-2024-31573 via org.xmlunit:xmlunit-core (>=2.0.0-alpha-02 <=2.0.0)

org.xmlunit:xmlunit-core MAVEN version =2.0.0-alpha-02, =2.0.0, =2.0.0, =2.0.0-alpha-04 Source cves: CVE-2024-31573 Source advisory: OSV:GHSA-CHFM-68VV-PVW5...

GHSA-HHWC-8G49-J8JX Ruby_parser-legacy Incorrect Permission Assignment for Critical Resource

The rubyparser-legacy aka legacy gem 1.0.0 for Ruby allows local privilege escalation because of world-writable files. For example, if the brakeman gem which has a legacy dependency 4.5.0 through 4.7.0 is used, a local user can insert malicious code into the...

Ruby_parser-legacy Incorrect Permission Assignment for Critical Resource

The rubyparser-legacy aka legacy gem 1.0.0 for Ruby allows local privilege escalation because of world-writable files. For example, if the brakeman gem which has a legacy dependency 4.5.0 through 4.7.0 is used, a local user can insert malicious code into the...

CVE-2019-18409

The rubyparser-legacy aka legacy gem 1.0.0 for Ruby allows local privilege escalation because of world-writable files. For example, if the brakeman gem which has a legacy dependency 4.5.0 through 4.7.0 is used, a local user can insert malicious code into the...

ruby_parser-legacy world writable files allow local privilege escalation

The rubyparser-legacy aka legacy gem 1.0.0 for Ruby allows local privilege escalation because of world-writable files. For example, if the brakeman gem which has a legacy dependency 4.5.0 through 4.7.0 is used, a local user can insert malicious code into the...