460 matches found
EUVD-2022-1549
Malicious code in bioql PyPI...
EUVD-2022-1522
Malicious code in bioql PyPI...
EUVD-2022-1568
Malicious code in bioql PyPI...
CVE-2022-0950
Unrestricted Upload of File with Dangerous Type in GitHub repository star7th/showdoc prior to 2.10.4...
CVE-2021-3683
showdoc is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-3990
showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random Number Generator PRNG...
CVE-2021-36440
Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'fileurl' parameter in the component AdminUpdateController.class.php'...
CVE-2021-3993
showdoc is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-3678
showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random Number Generator PRNG...
CVE-2021-3776
showdoc is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-3775
showdoc is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-3680
showdoc is vulnerable to Missing Cryptographic Step...
Unrestricted File Upload
showdoc/showdoc is vulnerable to unrestricted file upload. The vulnerability is due to improper validation of file extensions, allowing execution of arbitrary PHP code and leading to remote code execution...
CVE-2025-0520
An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7...
Arbitrary File Upload
Overview showdoc/showdoc is a tool for an IT team to share documents online. Affected versions of this package are vulnerable to Arbitrary File Upload due to the uploadImg method in the PageController class, which improperly validates file extensions. An attacker can execute arbitrary code by...
ShowDoc unrestricted file upload vulnerability
An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution. This issue affects ShowDoc: before 2.8.7...
GHSA-6JMR-R7P6-F5WR ShowDoc unrestricted file upload vulnerability
An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution. This issue affects ShowDoc: before 2.8.7...
CVE-2025-0520
An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7...
CVE-2025-0520 ShowDoc < 2.8.7 Unauthenticated File Upload Remote Code Execution
An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7...
CVE-2025-0520 ShowDoc < 2.8.7 Unauthenticated File Upload Remote Code Execution
An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7...