20 matches found
EUVD-2023-57362
Malicious code in bioql PyPI...
CVE-2024-0195
A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...
CVE-2023-5016
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by this vulnerability is the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java of the component API. The manipulation leads to...
Exploit for Code Injection in Ssssssss Spider-Flow
CVE-2024-0195 Improper Control of Generation of Code 'Code In...
Exploit for Code Injection in Ssssssss Spider-Flow
CVE-2024-0195 Improper Control of Generation of Code 'Code In...
Exploit for Code Injection in Ssssssss Spider-Flow
Badges !MIT Licensehttps://img.shields.io/badge/Licens...
CVE-2024-0195
A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...
CVE-2024-0195
A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...
CVE-2024-0195
SpiderFlow 0.4.3 contains a code-injection vulnerability in FunctionService.saveFunction (FunctionController.java) that enables remote code execution. Multiple public references (NVD/Nuclei template, Red Hat/RH CVE pages, and GitHub exploit pages) confirm unauthenticated remote exploitation with ...
CVE-2024-0195 spider-flow FunctionController.java FunctionService.saveFunction code injection
A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...
CVE-2024-0195 spider-flow FunctionController.java FunctionService.saveFunction code injection
A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...
PT-2024-15378 · Unknown · Spider-Flow
Name of the Vulnerable Software and Affected Versions: spider-flow version 0.4.3 Description: A critical vulnerability was found in spider-flow, affecting the FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. This vulnerability leads to code...
spider-flow security vulnerability
spider-flow is an open source crawler platform by sssssssss-team. A security vulnerability exists in spider-flow version 0.4.3. An attacker exploited the vulnerability to cause code injection...
CVE-2023-5016
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by this vulnerability is the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java of the component API. The manipulation leads to...
CVE-2023-5016
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by this vulnerability is the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java of the component API. The manipulation leads to...
Deserialization of untrusted data
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by this vulnerability is the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java of the component API. The manipulation leads to...
CVE-2023-5016 spider-flow API DataSourceController.java DriverManager.getConnection deserialization
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by this vulnerability is the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java of the component API. The manipulation leads to...
CVE-2023-5016
Spider-flow (up to version 0.5.0) API contains a deserialization vulnerability in DataSourceController.java (DriverManager.getConnection). The issue is triggered via remote access and has been publicly disclosed. Affected component/file: src/main/java/org/spiderflow/controller/DataSourceControlle...
PT-2023-31485 · Unknown · Spider-Flow
Name of the Vulnerable Software and Affected Versions: spider-flow versions up to 0.5.0 Description: A critical issue has been found, affecting the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java in the API component. This issue...
spider-flow code issue vulnerability
spider-flow is a crawler platform open source by sssssssss-team. Spider-flow 0.5.0 previous version of a code problem vulnerability , the vulnerability stems from the component API file src/main/java/org/spiderflow/controller/DataSourceController.java in the DriverManager. There is an unknown...