3 matches found
AZL-60199 CVE-2024-6345 affecting package python3 for versions less than 3.9.19-12
A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to code...
AZL-11394 CVE-2022-42919 affecting package python3 for versions less than 3.9.19-1
Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The Python multiprocessing library, when used with the forkserver start method on Linux, allows pickles to be deserialized from any user in the same machine local network...
PT-2020-13664 · Joomla · Joomla!
Name of the Vulnerable Software and Affected Versions: Joomla! versions prior to 3.9.19 Description: The default settings of the global textfilter configuration in Joomla! do not block HTML inputs for Guest users. This issue may allow unauthorized users to inject malicious HTML code...