The library’s vulnerability in converting files to the base64 format for uploading files to the Angular Base64 Upload web application, allowing a hacker to execute arbitrary code.

The vulnerability of the library for converting files to the base64 format, which is used to upload files to the web application’s server, relates to an incorrect restriction on the path name of the restricted directory. Exploiting this vulnerability could allow a malicious actor to execute...

PT-2024-21056 · Misskey · Misskey

Name of the Vulnerable Software and Affected Versions: Misskey versions prior to 2024.2.0 Description: Misskey is an open source, decentralized social media platform with ActivityPub support. The issue arises when fetching remote Activity Streams objects, as Misskey doesn't check that the respons...

MKCMS suffers from SQL injection vulnerability (CNVD-2020-33187)

MKCMS is a film and television management system, support for independent modification, users can directly upload the server to generate a website platform, you can add the background to modify the project and so on. MKCMS SQL injection vulnerability, attackers can use the vulnerability to obtain...

Several Popular Beauty Camera Apps Caught Stealing Users' Photos

Just because an app is available on Google Play Store doesn't mean that it is a legitimate app. Despite so many efforts by Google, some fake and malicious apps do sneak in and land millions of unaware users on the hunting ground of scammers and hackers. Cybersecurity firm Trend Micro uncovered at...

UBUNTU-CVE-2017-6100

tcpdf before 6.2.0 uploads files from the server generating PDF-files to an external FTP...