3 matches found
CVE-2023-53952
Dotclear 2.25.3 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files with .phar extension through the blog post creation interface. Attackers can upload files containing PHP system commands that execute when the uploaded file is accessed...
CVE-2025-14105
A vulnerability was determined in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. This impacts an unknown function of the file /reqproc/procpost of the component Web Interface. Executing manipulation of the argument goformId with the input REBOOTDEVICE can lead to denial of service. The attack can...
Open-Falcon dashboard security vulnerability
dashboard is Open-Falcon open source an Open Falcon unified default front-end component. A security vulnerability exists in Open-Falcon dashboard version 0.2.0, which originated from a vulnerability that allows an attacker to obtain, modify, and delete sensitive information by designing the POST...