12 matches found
CVE-2022-26725
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...
EUVD-2022-31275
Malicious code in bioql PyPI...
CVE-2023-30179
CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection SSTI. An authenticated attacker can inject Twig Template to User Photo Location field when setting User Photo Location in User Settings, lead to Remote Code Execution. NOTE: the vendor disputes this because only Administrator...
CVE-2023-30179
CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection SSTI. An authenticated attacker can inject Twig Template to User Photo Location field when setting User Photo Location in User Settings, lead to Remote Code Execution. NOTE: the vendor disputes this because only Administrator...
Design/Logic Flaw
DISPUTED CraftCMS version 3.7.59 is vulnerable to Server-Side Template Injection SSTI. An authenticated attacker can inject Twig Template to User Photo Location field when setting User Photo Location in User Settings, lead to Remote Code Execution. NOTE: the vendor disputes this because only...
PT-2023-22567 · Craft Cms · Craft Cms
Name of the Vulnerable Software and Affected Versions: CraftCMS version 3.7.59 Description: The issue concerns Server-Side Template Injection SSTI, where an authenticated attacker can inject Twig Template into the User Photo Location field in User Settings, potentially leading to Remote Code...
CraftCMS 代码注入漏洞
CraftCMS is a content management system from CraftCMS, Inc. A code injection vulnerability exists in CraftCMS version 3.7.59, which stems from susceptibility to a server-side template injection SSTI attack, where an attacker can inject a Twig template into the er Photo Location field when the Use...
CVE-2022-26725
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...
CVE-2022-26725
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...
Design/Logic Flaw
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...
CVE-2022-26725
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. Photo location information may persist after it is removed with Preview Inspector...
CVE-2022-26725
CVE-2022-26725 is a macOS Monterey 12.4–specific issue. A logic/state-management flaw allowed photo location information to persist after it was removed via Preview Inspector. The vulnerability affects the macOS component handling image metadata, and Apple lists the fix in macOS Monterey 12.4 (no...