8 matches found
EUVD-2024-2578
Malicious code in bioql PyPI...
CVE-2020-16202
WebAccess Node All versions prior to 9.0.1 has incorrect permissions set for resources used by specific services, which may allow code execution with system privileges...
New Relic: NRQL Query allows restricted user to pull all data from Synthetics monitors without having read permissions enabled
@jonbottarini identified an issue where our permissions for Synthetics didn't match the permissions elsewhere in our product. This eventually led to a change in our underlying permissions code to unify our products and prevent issues like this...
Icecream Apps Insecure File Permissions / Privilege Escalation
Exploit Title: Multiple Icecream Apps Local Privilege Escalation Date: 13/09/2016 Exploit Author: Tulpa Contact: [email protected] Author website: www.tulpa-security.com Vendor Homepage: icecreamapps.com Software Versions Affected: Icecream Ebook Reader 4.21 | Icecream Screen Recorder 4.21...
Sync for reddit - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Sync for reddit published at the 'play' market has multiple vulnerabilities...
IssueLevelSecurity permission check does not work with a DocumentIssueImpl if no security level has been set.
We need to be able to handle per issue permission checks, if no issue security level has been set. The problem is that if no issue level security is set, -1 gets indexed. The permissions code however expects a null value...
IssueLevelSecurity permission check does not work with a DocumentIssueImpl if no security level has been set.
We need to be able to handle per issue permission checks, if no issue security level has been set. The problem is that if no issue level security is set, -1 gets indexed. The permissions code however expects a null value...
IssueLevelSecurity permission check does not work with a DocumentIssueImpl if no security level has been set.
We need to be able to handle per issue permission checks, if no issue security level has been set. The problem is that if no issue level security is set, -1 gets indexed. The permissions code however expects a null value...