Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:41 a.m.7 views

CVE-2022-26725

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...

5.3CVSS5.8AI score0.00745EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31275

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00745EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:40 a.m.3 views

CVE-2023-30179

CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection SSTI. An authenticated attacker can inject Twig Template to User Photo Location field when setting User Photo Location in User Settings, lead to Remote Code Execution. NOTE: the vendor disputes this because only Administrator...

7.2CVSS7.3AI score0.02203EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/06/13 5:15 p.m.2 views

CVE-2023-30179

CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection SSTI. An authenticated attacker can inject Twig Template to User Photo Location field when setting User Photo Location in User Settings, lead to Remote Code Execution. NOTE: the vendor disputes this because only Administrator...

7.2CVSS7.2AI score0.02203EPSS
Exploits1References5
Prion
Prion
added 2023/06/13 5:15 p.m.22 views

Design/Logic Flaw

DISPUTED CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection SSTI. An authenticated attacker can inject Twig Template to User Photo Location field when setting User Photo Location in User Settings, lead to Remote Code Execution. NOTE: the vendor disputes this because only...

5.8CVSS7.2AI score0.02203EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.6 views

PT-2023-22567 · Craft Cms · Craft Cms

Name of the Vulnerable Software and Affected Versions: CraftCMS version 3.7.59 Description: The issue concerns Server-Side Template Injection SSTI, where an authenticated attacker can inject Twig Template into the User Photo Location field in User Settings, potentially leading to Remote Code...

7.2CVSS7.7AI score0.02203EPSS
Exploits1References12
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.6 views

CraftCMS 代码注入漏洞

CraftCMS is a content management system from CraftCMS, Inc. A code injection vulnerability exists in CraftCMS version 3.7.59, which stems from susceptibility to a server-side template injection SSTI attack, where an attacker can inject a Twig template into the er Photo Location field when the Use...

7.2CVSS7.4AI score0.02203EPSS
Exploits1References5
NVD
NVD
added 2022/05/26 7:15 p.m.17 views

CVE-2022-26725

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...

5.3CVSS0.00745EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/05/26 7:15 p.m.2 views

CVE-2022-26725

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...

5.3CVSS6.1AI score0.00745EPSS
Exploits0References2
Prion
Prion
added 2022/05/26 7:15 p.m.15 views

Design/Logic Flaw

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...

5CVSS5.2AI score0.00745EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/26 6:56 p.m.22 views

CVE-2022-26725

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...

6.2AI score0.00745EPSS
Exploits0References1
CVE
CVE
added 2022/05/26 6:56 p.m.84 views

CVE-2022-26725

CVE-2022-26725 is a macOS Monterey 12.4–specific issue. A logic/state-management flaw allowed photo location information to persist after it was removed via Preview Inspector. The vulnerability affects the macOS component handling image metadata, and Apple lists the fix in macOS Monterey 12.4 (no...

5.3CVSS5.8AI score0.00745EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder