21 matches found
EUVD-2019-13664
Malware in sbrugna...
EUVD-2017-8864
Malware in sbrugna...
EUVD-2018-0308
Malware in sbrugna...
EUVD-2023-3113
Malicious code in bioql PyPI...
CVE-2023-39962
Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 19.0.0 and prior to versions 19.0.13.10, 20.0.14.15, 21.0.9.13, 22.2.10.14, 23.0.12.8, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1, a malicious user could delete any personal or global external...
CVE-2019-5603
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, system calls operating on file descriptors as part of mqueuefs did not properly release the reference allowing a...
CVE-2025-27401
Tuleap is an Open Source Suite to improve management of software developments and collaboration. In a standard usages of Tuleap, the issue has a limited impact, it will mostly leave dangling data. However, a malicious user could create and delete reports multiple times to cycle through all the...
Directory traversal
A malicious user can cause log files to be written to a directory that they do not have permission to write to...
CVE-2022-36088 GoCD Windows installations outside default location inadequately restrict installation file permissions
GoCD is a continuous delivery server. Windows installations via either the server or agent installers for GoCD prior to 22.2.0 do not adequately restrict permissions when installing outside of the default location. This could allow a malicious user with local access to the server GoCD Server or...
CVE-2022-25625
A malicious unauthorized PAM user can access the administration configuration data and change the values...
CVE-2021-30651
A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access...
CVE-2020-18890
Rmote Code Execution RCE vulnerability in puppyCMS v5.1 due to insecure permissions, which could let a remote malicious user getshell via /admin/functions.php...
Directory Traversal
These npm packages are vulnerable to directory traversal attacks. A malicious user can access areas outside of the intended target directory by using a url containing ../...
Directory Traversal
WordPress is vulenrable to directory traversal. The library does not sanitize the urlholder parameter in the FileUploadUpgrader class, allowing a malicious user to access arbitrary files by passing a string to the application...
Vulnerabilities in the Debian GNU/Linux operating system that allow a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the idle package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information...
Portcullis Security Advisory 05-008
Portcullis Security Advisory Vulnerable System: Webseries Payment Application Vulnerability Title: Poor Password Change Implementation Vulnerability discovery and development: Portcullis Security Testing Services Affected systems: Bottomline Webseries Payment Application Details: The change...
RHEL 3 : openoffice.org (RHSA-2004:446)
Updated openoffice.org packages that fix a security issue in temporary file handling are now available. OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor, spreadsheet, presentation manager, formula editor, and drawing program. Secunia...
KPMG-2002008: Watchguard SOHO IP Restrictions Flaw
-------------------------------------------------------------------- -=Watchguard SOHO IP Restrictions Flaw=- courtesy of KPMG Denmark BUG-ID: 2002008 Released: 10th Apr 2002 -------------------------------------------------------------------- Problem: ======== A flaw in the Watchguard SOHO...
iMailv5.txt
0oooop / Six Toed / Security Advisory Date: 2000, 03/01 Affected Software: iMail Server 5.0 Platform: Windows NT 4.0 SP 6a Problem A malicous user can read and send emails as any other user on the system. How The issue lies in how iMail handles the creating of new email accounts, and how it store...
netbsd.umapfs.txt
Date: Thu, 18 Mar 1999 00:03:40 +1100 From: matthew green To: [email protected] Subject: NetBSD Security Advisory 1999-006 -----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 1999-006 ================================= Topic: Security hole in umapfs Version: NetBSD 1.3.3 and prior;...