11 matches found
EUVD-2024-16664
Malicious code in bioql PyPI...
CVE-2024-0882
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic. This affects an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation of the argument name with the input...
CVE-2024-0882
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic. This affects an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation of the argument name with the input...
CVE-2024-0882
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic. This affects an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation of the argument name with the input...
Path traversal
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic. This affects an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation of the argument name with the input...
CVE-2024-0882 qwdigital LinkWechat Universal Download Interface resource path traversal
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic. This affects an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation of the argument name with the input...
CVE-2024-0882 qwdigital LinkWechat Universal Download Interface resource path traversal
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic. This affects an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation of the argument name with the input...
CVE-2024-0882
Summary: CVE-2024-0882 affects qwdigital LinkWechat 5.1.0. The vulnerability is a path traversal in the Universal Download Interface’s resource endpoint; manipulating the name argument with the input /profile/../../../../../etc/passwd can access ../filedir. The issue is exploitable remotely and h...
PT-2024-15887 · Qwdigital · Qwdigital Linkwechat
Name of the Vulnerable Software and Affected Versions: qwdigital LinkWechat version 5.1.0 Description: A vulnerability was found in qwdigital LinkWechat, affecting an unknown part of the file /linkwechat-api/common/download/resource of the component Universal Download Interface. The manipulation ...
LinkWeChat Security Breach
LinkWeChat is an open source SCRM system based on enterprise WeChat. A security vulnerability exists in LinkWeChat version 5.1.0, which stems from the parameter name in the file /linkwechat-api/common/download/resource that causes path traversal...
Arbitrary File Download Vulnerability in LinkWechat
LinkWeChat is an open source SCRM system based on enterprise WeChat. LinkWechat has an arbitrary file download vulnerability that can be exploited by an attacker to download arbitrary files under the system...