8 matches found
EUVD-2023-28730
Malicious code in bioql PyPI...
CVE-2023-24720
An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file...
CVE-2023-24720
An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file...
PT-2023-19747 · Unknown · Readium-Js
Name of the Vulnerable Software and Affected Versions: readium-js version 0.32.0 Description: The issue allows attackers to execute arbitrary code via uploading a crafted EPUB file, exploiting an arbitrary file upload vulnerability. Recommendations: For readium-js version 0.32.0, at the moment,...
readium-js 代码问题漏洞
readium-js is Readium open source an EPUB processing engine written in Javascript . A security vulnerability exists in readium-js version v0.32.0, which stems from an arbitrary file upload vulnerability that can be exploited by an attacker to execute arbitrary code by uploading a crafted EPUB fil...
CVE-2023-24720
This CVE concerns readium-js v0.32.0, where an arbitrary file upload vulnerability could allow attackers to execute arbitrary code by uploading a crafted EPUB file. The NVD entry assigns CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base score 9.8 (CRITICAL), indicating a network-attack, no pri...
CVE-2023-24720
An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file...
CVE-2023-24720
An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file...