5 matches found
CVE-2025-59336 Relative Path Traversal in Luanox
Luanox is a module host for Lua packages. Prior to 0.1.1, a file traversal vulnerability can cause potential denial of service by overwriting Phoenix runtime files. Package names like ../../package are not properly filtered and pass the validity check of the rockspec verification system. This...
anything-llm 资源管理错误漏洞
anything-llm is an all-in-one desktop and Docker AI application open-sourced by Mintplex. A resource management error vulnerability exists in anything-llm, which stems from the fact that uploading low-sample-rate audio files may cause a site instance to crash...
WordPress Plugin All In One Favicon Path Traversal Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability exists in...
Kirby 安全漏洞
Kirby is a file-based content management system CMS. A security vulnerability exists in Kirby versions 3.5.8.2 and earlier, 3.6.0 through 3.6.6.2, 3.7.0 through 3.7.5.1, 3.8.0 through 3.8.4, 3.9.0 through 3.9.5, and 3.9.0 and 3.9.5, which stems from an unspecified length of the Kirby authenticati...
Improper String/Integer Input Validation Leads to the Crashing of Site
Description If you give the string input in the Start/End time field, then the application will stop working. Proof of Concept 1. Go to "Settings-General-Reconnection" 2. Change activated to "on" 3. On every input fields place any string for example put: "test" 4. Click on save and refresh 5. The...