8 matches found
EUVD-2023-50529
Malicious code in bioql PyPI...
CVE-2024-51483
changedetection.io is free, open source web page change detection software. Prior to version 0.47.5, when a WebDriver is used to fetch files, source:file:///etc/passwd can be used to retrieve local system files, where the more traditional file:///etc/passwd gets blocked. Version 0.47.5 fixes the...
CVE-2025-1936
CVE-2025-1936 is a Firefox/Thunderbird vulnerability where jar: URLs used to retrieve local ZIP contents could misclassify content due to a null-termination issue in the archive, potentially enabling disguised code in a web extension. Affected: Firefox before 136, Firefox ESR before 128.8, Thunde...
ManageEngine SupportCenter Plus < 11.0 Build 11026 Multiple Vulnerabilities
The version of ManageEngine SupportCenter Plus prior to 11.0 Build 11026 is running on the remote web server. It is, therefore, affected by multiple vulnerabilities, including the following: - A remote code execution vulnerability due to a flaw in the Analytics Plus integration input field...
CVE-2022-44008
An issue was discovered in BACKCLICK Professional 5.9.63. Due to improper validation, arbitrary local files can be retrieved by accessing the back-end Tomcat server directly...
PT-2022-27070 · Apache · Apache Tomcat
Name of the Vulnerable Software and Affected Versions: BACKCLICK Professional version 5.9.63 Description: An issue was discovered due to improper validation, allowing arbitrary local files to be retrieved by accessing the back-end Tomcat server directly. Recommendations: For BACKCLICK Professiona...
Keep Solutions Archeevo 安全漏洞
Keep Solutions Archeevo is a phase of document management software from Keep Solutions, Portugal. Keep archives organizations in all functional areas, covering activities from file description to productivity management. A security vulnerability exists in Keep Solutions Archeevo that could be...
phpMyVisites.txt
================================================================== File: phpMyVisites 1.3 local file retrieval From: remote Date: 26/04/2005 Credits: Max Cerny maxatczernydotcz Vendor: http://www.phpmyvisites.net Affected version: 1.3, not tested...