EUVD-2024-1210

Malicious code in bioql PyPI...

Path Traversal

gin-vue-admin is vulnerable to Path Traversal. The vulnerability is due to improper validation for PlugName field within a struct, which allows an attacker to perform directory traversal by manipulating the plugName parameter in the Plugin System - Plugin Template feature...

gin-vue-admin background arbitrary code coverage vulnerability

Impact "gin-vue-admin Plugin Template feature, an attacker can perform directory traversal by manipulating the 'plugName' parameter. They can create specific folders such as 'api', 'config', 'global', 'model', 'router', 'service', and 'main.go' function within the specified traversal directory...

GHSA-GV3W-M57P-3WC4 gin-vue-admin background arbitrary code coverage vulnerability

Impact "gin-vue-admin Plugin Template feature, an attacker can perform directory traversal by manipulating the 'plugName' parameter. They can create specific folders such as 'api', 'config', 'global', 'model', 'router', 'service', and 'main.go' function within the specified traversal directory...

Gin-Vue-Admin 安全漏洞

Gin-Vue-Admin is a full-stack pre-development infrastructure platform based on Vue and Gin development. A security vulnerability exists in Gin-Vue-Admin v2.6.1 and earlier versions, which stems from a code injection vulnerability in the backend that can be exploited by an attacker to perform...

PT-2024-24090 · Unknown · Gin-Vue-Admin

Name of the Vulnerable Software and Affected Versions: gin-vue-admin versions 2.6.1 and earlier Description: The issue is a code injection vulnerability in the backend of gin-vue-admin, specifically in the Plugin System - Plugin Template feature. An attacker can perform directory traversal by...