SUSE-RU-2025:4131-1 Recommended update for suse-migration-sle16-activation, SLES16-Migration, SLES16-SAP_Migration, suse-migration-services, suse-migration-rpm, wicked2nm, image-janitor

This update for suse-migration-sle16-activation, SLES16-Migration, SLES16-SAPMigration, suse-migration-services, suse-migration-rpm, wicked2nm, image-janitor fixes the following issues: Changes for suse-migration-sle16-activation: - Simplify interface naming by disabling predictable names at boot...

EUVD-2024-45894

Malicious code in bioql PyPI...

EUVD-2024-22255

Malicious code in bioql PyPI...

Malicious code in strict-null-check-migration-tools (npm)

The package strict-null-check-migration-tools was found to contain malicious code...

CVE-2024-52407

Unrestricted Upload of File with Dangerous Type vulnerability in BasePress BasePress Migration Tools basepress-migration-tools allows Upload a Web Shell to a Web Server.This issue affects BasePress Migration Tools: from n/a through = 1.0.0...

CVE-2024-24892

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection', Improper Privilege Management vulnerability in openEuler migration-tools on Linux allows Command Injection, Restful Privilege Elevation. This vulnerability is associated with program files...

CVE-2024-52407

Unrestricted Upload of File with Dangerous Type vulnerability in BasePress BasePress Migration Tools basepress-migration-tools allows Upload a Web Shell to a Web Server.This issue affects BasePress Migration Tools: from n/a through = 1.0.0...

CVE-2024-52407 WordPress BasePress Migration Tools plugin <= 1.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in BasePress BasePress Migration Tools basepress-migration-tools allows Upload a Web Shell to a Web Server.This issue affects BasePress Migration Tools: from n/a through = 1.0.0...

CVE-2024-52407 WordPress BasePress Migration Tools plugin <= 1.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in codeSavory BasePress Migration Tools allows Upload a Web Shell to a Web Server.This issue affects BasePress Migration Tools: from n/a through 1.0.0...

CVE-2024-52407

CVE-2024-52407 (WordPress BasePress Migration Tools) affects BasePress Migration Tools (WordPress plugin) versions

WordPress plugin BasePress Migration Tools 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue exists in the...

PT-2024-35246 · Unknown · Basepress Migration Tools

Name of the Vulnerable Software and Affected Versions: BasePress Migration Tools versions 1.0.0 and earlier Description: The issue allows an attacker to upload a web shell to a web server by exploiting an Unrestricted Upload of File with Dangerous Type vulnerability in the BasePress Migration...

WordPress BasePress Migration Tools plugin <= 1.0.0 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin BasePress Migration Tools versions = 1.0.0...

WordPress BasePress Migration Tools Plugin <= 1.0.0 is vulnerable to Arbitrary File Upload

Software BasePress Migration Tools Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-52407 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID fc45329ebd4c Credits stealthcopter Required privileg...

CVE-2024-24892

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection', Improper Privilege Management vulnerability in openEuler migration-tools on Linux allows Command Injection, Restful Privilege Elevation. This vulnerability is associated with program files...

CVE-2024-24892 Unauthorized RCE in migration-tools

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection', Improper Privilege Management vulnerability in openEuler migration-tools on Linux allows Command Injection, Restful Privilege Elevation. This vulnerability is associated with program files...

CVE-2024-24892 Unauthorized RCE in migration-tools

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection', Improper Privilege Management vulnerability in openEuler migration-tools on Linux allows Command Injection, Restful Privilege Elevation. This vulnerability is associated with program files...

CVE-2024-24892

CVE-2024-24892 describes an OS command injection and privilege escalation in openEuler migration-tools (versions 1.0.0–1.0.1). The root cause is improper neutralization of elements used in OS commands, allowing remote command execution via an exposed interface, which can lead to high-severity imp...

migration-tools 安全漏洞

migration-tools is openEuler's tool to help users migrate Centos systems to openEuler systems. A security vulnerability exists in openEuler migration-tools from version 1.0.0 to 1.0.1, which stems from an operating system command injection issue...

OESA-2024-1275 migration-tools security update

A tool to help users migrate the Centos system to the UOS system and openEuler system. Security Fixes: By sending HTTP requests to access a specific interface, attackers can execute arbitrary commands with root privileges on remote machines.CVE-2024-24892...