Lucene search
K

4 matches found

OSV
OSV
added 2023/11/27 11:28 p.m.19 views

GHSA-9V3J-4J64-P937 OroPlatform vulnerable to path traversal during temporary file manipulations

Impact Path Traversal is possible in Oro\Bundle\GaufretteBundle\FileManager::getTemporaryFileName. With this method, an attacker can pass the path to a non-existent file, which will allow writing the content to a new file that will be available during script execution. The file will be deleted...

8.5CVSS9.4AI score0.00946EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/11/27 8:27 p.m.22 views

CVE-2022-41951 OroPlatform vulnerable to path traversal during temporary file manipulations

OroPlatform is a PHP Business Application Platform BAP designed to make development of custom business applications easier and faster. Path Traversal is possible in Oro\Bundle\GaufretteBundle\FileManager::getTemporaryFileName. With this method, an attacker can pass the path to a non-existent file...

8.5CVSS9.8AI score0.00946EPSS
Exploits0References1
NVD
NVD
added 2022/11/13 8:15 a.m.19 views

CVE-2022-3969

A vulnerability was found in OpenKM up to 6.3.11 and classified as problematic. Affected by this issue is the function getFileExtension of the file src/main/java/com/openkm/util/FileUtils.java. The manipulation leads to insecure temporary file. Upgrading to version 6.3.12 is able to address this...

5.5CVSS0.00526EPSS
Exploits1References4
NVD
NVD
added 2008/09/29 5:17 p.m.19 views

CVE-2008-4192

The pservershutdown function in fenceegenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file...

6.9CVSS6.1AI score0.00711EPSS
Exploits0References18
Rows per page
Query Builder