EUVD-2018-0343

Malware in sbrugna...

OPENSUSE-SU-2024:13338-1 picard-2.10-1.1 on GA media

These are all security issues fixed in the picard-2.10-1.1 package on the GA media of openSUSE Tumbleweed...

picard-avocats.com Cross Site Scripting vulnerability OBB-3915312

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

com.github.broadinstitute:picard (>=2.27.3 <=2.27.4), org.gorpipe:gor-drivers (>=4.1.2 <=4.3.2) +4 more potentially affected by CVE-2022-21126 via com.github.samtools:htsjdk (=3.0.0)

com.github.samtools:htsjdk MAVEN version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.github.samtools:htsjdk and may be impacted: - com.github.broadinstitute:picard =2.27.3, =4.1.2, =4.3.1, =4.1.2, =4.1.2, =3.10.1, =4.2.9 Source cves:...

GHSA-X5X2-MFC7-R22F Directory Traversal in picard

Affected versions of picard resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

Directory Traversal in picard

Affected versions of picard resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

picard Directory Traversal Vulnerability

picard is a micro-framework based on Node.js. A directory traversal vulnerability exists in picard. An attacker can exploit this vulnerability to gain access to the file system by placing a '... /' sequence in a URL to gain access to the file system...

CVE-2017-16194

picard is a micro framework. picard is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

CVE-2017-16194

picard is a micro framework. picard is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

Directory traversal

picard is a micro framework. picard is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

CVE-2017-16194

picard is a micro framework. picard is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

CVE-2017-16194

Picard (a Node.js micro framework) is vulnerable to a directory traversal flaw: an attacker can access the filesystem by including ../ in the URL. The issue is documented across multiple sources (GHSA/NPM advisory, Veracode, CNVD, OSV, etc.), with no patch available in the advisories and recommen...

[SECURITY] Fedora 25 Update: ripright-0.11-5.fc25

RipRight is a minimal CD ripper modeled on autorip. It can run as a daemon and will automatically start ripping any CD found in the drive after which the disc will be ejected. Ripping is always to FLAC lossless audio format with tags taken from the community-maintained MusicBrainz lookup service...

[SECURITY] Fedora 26 Update: ripright-0.11-5.fc26

RipRight is a minimal CD ripper modeled on autorip. It can run as a daemon and will automatically start ripping any CD found in the drive after which the disc will be ejected. Ripping is always to FLAC lossless audio format with tags taken from the community-maintained MusicBrainz lookup service...

Directory Traversal

Overview Affected versions of picard resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...

picard.fr XSS vulnerability

Vulnerable URL: http://www.picard.fr/recherche?q=test%27/confirmOPENBUGBOUNTY//%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 38370 VIP website status:| Yes Check picard.fr SSL...