4 matches found
CVE-2022-50992
Weaver E-cology 9.5 (pre-10.52) is affected by an unauthenticated arbitrary file read via the XmlRpcServlet at the XML-RPC endpoint. The vulnerability arises in WorkflowService.getAttachment and WorkflowService.LoadTemplateProp, allowing remote attackers to read arbitrary files (including system ...
EUVD-2023-41778
Malicious code in bioql PyPI...
Exploit for CVE-2024-4956
CVE-2024-4956 - Unauthenticated Path Traversal in Nexus Reposi...
WordPress Aspose Cloud eBook Generator Plugin Arbitrary File Download Vulnerability
WordPress is a blogging platform developed using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Aspose Cloud eBook Generator is a plugin for creating eBook blogs, articles, and other content. An arbitrary file download vulnerability exists in the...