11 matches found
EUVD-2024-28178
Malicious code in bioql PyPI...
MAL-2025-5045 Malicious code in nextcloudpi (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in nextcloudpi (npm)
The package communicates with a domain associated with malicious activity...
CVE-2024-30247
NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. A command injection vulnerability in NextCloudPi allows command execution as the root user via the NextCloudPi web-panel. Due to a security misconfiguration this can be used by anyone with...
CVE-2024-30247
NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. A command injection vulnerability in NextCloudPi allows command execution as the root user via the NextCloudPi web-panel. Due to a security misconfiguration this can be used by anyone with...
CVE-2024-30247 Command Injection as root in NextCloudPi web panel
NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. A command injection vulnerability in NextCloudPi allows command execution as the root user via the NextCloudPi web-panel. Due to a security misconfiguration this can be used by anyone with...
CVE-2024-30247
CVE-2024-30247 (NextcloudPi) corresponds to a command injection vulnerability in NextcloudPi images (via the web panel) allowing root-level code execution without authentication. Affected: NextcloudPi releases prior to 1.53.1. Impact scoped to untrusted access through the web-panel; risk includes...
CVE-2024-30247 Command Injection as root in NextCloudPi web panel
NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. A command injection vulnerability in NextCloudPi allows command execution as the root user via the NextCloudPi web-panel. Due to a security misconfiguration this can be used by anyone with...
CVE-2024-30247 Command Injection as root in NextCloudPi web panel
NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. A command injection vulnerability in NextCloudPi allows command execution as the root user via the NextCloudPi web-panel. Due to a security misconfiguration this can be used by anyone with...
PT-2024-23294 · Unknown · Nextcloudpi
Name of the Vulnerable Software and Affected Versions: NextcloudPi versions prior to 1.53.1 Description: A command injection issue in NextcloudPi allows command execution as the root user via the NextcloudPi web-panel. This can be exploited by anyone with access to the web-panel, as no...
Nextcloud NextcloudPi 安全漏洞
Nextcloud NextcloudPi is a library from Nextcloud Germany. A security vulnerability exists in NextcloudPi 1.53.0 and earlier versions, which stems from the presence of a command injection vulnerability that allows an attacker to execute commands via the NextCloudPi web panel as the root user...