Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-0804

Malware in sbrugna...

7.5CVSS7.6AI score0.04033EPSS
Exploits1References15
Github Security Blog
Github Security Blog
added 2018/12/21 5:48 p.m.41 views

XML External Entity (XXE) vulnerability in Square Retrofit

Square Open Source Retrofit versions prior to commit 4a693c5aeeef2be6c7ecf80e7b5ec79f6ab59437 contain a XML External Entity XXE vulnerability in JAXB. An attacker could use this to remotely read files from the file system or to perform SSRF. This vulnerability appears to have been fixed in commit...

9.1CVSS4.5AI score0.02152EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2018/12/21 5:48 p.m.16 views

GHSA-J379-9JR9-W5CQ XML External Entity (XXE) vulnerability in Square Retrofit

Square Open Source Retrofit versions prior to commit 4a693c5aeeef2be6c7ecf80e7b5ec79f6ab59437 contain a XML External Entity XXE vulnerability in JAXB. An attacker could use this to remotely read files from the file system or to perform SSRF. This vulnerability appears to have been fixed in commit...

9.1CVSS9.1AI score0.02152EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2018/12/21 5:48 p.m.31 views

Directory Traversal vulnerability in Square Retrofit

Square Retrofit versions from including 2.0 to 2.5.0 excluding contain a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter. By manipulating the URL an attacker could add or delete resources otherwise unavailable to her. This attack appears to be exploitable via an...

7.5CVSS3.7AI score0.04033EPSS
Exploits1References9Affected Software1
OSV
OSV
added 2018/12/21 5:48 p.m.19 views

GHSA-8P8G-F9VG-R7XR Directory Traversal vulnerability in Square Retrofit

Square Retrofit versions from including 2.0 to 2.5.0 excluding contain a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter. By manipulating the URL an attacker could add or delete resources otherwise unavailable to her. This attack appears to be exploitable via an...

7.5CVSS7.5AI score0.04033EPSS
Exploits1References10
NVD
NVD
added 2018/12/20 3:29 p.m.13 views

CVE-2018-1000850

Square Retrofit version versions from including 2.0 and 2.5.0 excluding contains a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter that can result in By manipulating the URL an attacker could add or delete resources otherwise unavailable to her.. This attack...

7.5CVSS7.5AI score0.04033EPSS
Exploits1References7
OSV
OSV
added 2018/12/20 3:29 p.m.16 views

CVE-2018-1000850

Square Retrofit version versions from including 2.0 and 2.5.0 excluding contains a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter that can result in By manipulating the URL an attacker could add or delete resources otherwise unavailable to her.. This attack...

7.5CVSS6.7AI score
Exploits0References7
Prion
Prion
added 2018/12/20 3:29 p.m.14 views

Directory traversal

Square Retrofit version versions from including 2.0 and 2.5.0 excluding contains a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter that can result in By manipulating the URL an attacker could add or delete resources otherwise unavailable to her.. This attack...

6.4CVSS7.5AI score0.04033EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2018/12/20 3:0 p.m.111 views

CVE-2018-1000850

CVE-2018-1000850 pertains to Square Retrofit: versions from 2.0 up to 2.4.x (inclusive) contain a Directory Traversal vulnerability in RequestBuilder.addPathParameter. By manipulating an encoded path parameter on POST/PUT/DELETE requests, an attacker could potentially access or alter resources ou...

7.5CVSS7.4AI score0.04033EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2018/12/20 3:0 p.m.15 views

CVE-2018-1000850

Square Retrofit version versions from including 2.0 and 2.5.0 excluding contains a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter that can result in By manipulating the URL an attacker could add or delete resources otherwise unavailable to her.. This attack...

7.5AI score0.04033EPSS
Exploits1References7
Rows per page
Query Builder