Lucene search
+L

282 matches found

OSV
OSV
added 2022/05/05 12:29 a.m.12 views

GHSA-42GQ-H7XJ-33R4 Features file injection vulnerability

File injection vulnerability in Ruby gem Features 0.3.0 allows remote attackers to inject malicious html in the /tmp directory...

5.4CVSS5.5AI score0.0081EPSS
Exploits1References5
OSV
OSV
added 2022/05/01 2:0 a.m.27 views

GHSA-VXF2-7RC3-PXMX Cheetah Path Search Order Hijacking

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/...

7.2CVSS7AI score0.00433EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/01 2:0 a.m.22 views

Cheetah Path Search Order Hijacking

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/...

7.2CVSS7.5AI score0.00433EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/04/23 12:40 a.m.24 views

GHSA-V5C9-98F7-2H54 Hadoop symlink vulnerability

Hadoop 1.0.3 contains a symlink vulnerability as a result of storing pid files in the shared /tmp directory by default...

7.5CVSS7.4AI score0.02671EPSS
Exploits2References5
UbuntuCve
UbuntuCve
added 2021/12/07 3:15 a.m.15 views

CVE-2021-44512

World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a local attacker to compromise the integrity of session handling, or obtain the read-write session ID from a read-only session symlink in this directory...

7CVSS7AI score0.00254EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2021/11/23 5:54 p.m.36 views

Improper file handling in concrete5/core

A bypass of adding remote files in Concrete CMS previously concrete5 File Manager leads to remote code execution in Concrete CMS concrete5 versions 8.5.6 and below. The external file upload feature stages files in the public directory even if they have disallowed file extensions. They are stored ...

7.2CVSS1.3AI score0.03132EPSS
Exploits1References4Affected Software1
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.24 views

Mozilla Firefox Security Advisory (MFSA2014-90) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

2.1CVSS6.6AI score0.00304EPSS
Exploits0References3
NVD
NVD
added 2021/08/25 12:15 p.m.26 views

CVE-2021-33884

An Unrestricted Upload of File with Dangerous Type vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows remote attackers to upload any files to the /tmp directory of the device through the webpage API. This can result in critical files being overwritten...

9.1CVSS0.00984EPSS
Exploits1References2
OSV
OSV
added 2021/08/25 12:15 p.m.7 views

CVE-2021-33884

An Unrestricted Upload of File with Dangerous Type vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows remote attackers to upload any files to the /tmp directory of the device through the webpage API. This can result in critical files being overwritten...

9.1CVSS7.6AI score0.00984EPSS
Exploits1References2
Prion
Prion
added 2021/08/25 12:15 p.m.17 views

Unrestricted file upload

An Unrestricted Upload of File with Dangerous Type vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows remote attackers to upload any files to the /tmp directory of the device through the webpage API. This can result in critical files being overwritten...

5CVSS9.2AI score0.00984EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2021/08/25 12:0 a.m.8 views

B.Braun SpaceCom2 代码问题漏洞

The B. Braun SpaceCom2 is a hardware device from B. Braun, Germany, designed to connect to external devices to record data in a patient data management system, PC, or USB memory stick. A security vulnerability exists in versions of the B. Braun SpaceCom2 prior to 012U000062, which allows a remote...

9.1CVSS8.6AI score0.00984EPSS
Exploits1References6
Oracle linux
Oracle linux
added 2021/07/07 12:0 a.m.94 views

ruby:2.6 security, bug fix, and enhancement update

ruby 2.6.7-107 - Upgrade to Ruby 2.6.7. Resolves: rhbz1952627 - Resolv::DNS: timeouts if multiple IPv6 name servers are given an address containing leading zero Resolves: rhbz1954968 - Fix: Rubygem-bundler: Don't use insecure tmp directory as home allows for execution of malicious code. Resolves:...

8.1CVSS2.7AI score0.06811EPSS
Exploits2
Packet Storm
Packet Storm
added 2021/04/08 12:0 a.m.431 views

Trojan-Downloader.Win32.Genome.qiw Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/5cddc4647fb1c59f5dc7f414ada7fad4.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Downloader.Win32.Genome.qiw Vulnerability: Insecure Permissions Description: Genome.qiw creat...

7.4AI score
Exploits0
OSV
OSV
added 2021/01/28 2:15 a.m.3 views

CVE-2021-26067

Affected versions of Atlassian Bamboo allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the tmp directory, via a Sensitive Data Exposure vulnerability in the /chart endpoint. The affected versions...

5.3CVSS6.1AI score0.0111EPSS
Exploits0References1
NVD
NVD
added 2020/12/16 8:15 a.m.47 views

CVE-2020-35476

A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...

9.8CVSS9.9AI score0.8533EPSS
Exploits5References2
OSV
OSV
added 2020/12/16 8:15 a.m.32 views

CVE-2020-35476

A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...

9.8CVSS8AI score
Exploits0References2
Prion
Prion
added 2020/12/16 8:15 a.m.26 views

Remote code execution

A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...

7.5CVSS9.8AI score0.8533EPSS
Exploits5References2Affected Software1
OpenVAS
OpenVAS
added 2020/11/23 12:0 a.m.10 views

openGauss: Ensuring the Existence of the Socket File

Some application programs may search for the socket file in the /tmp directory to deceive the server. During the system startup, the socket file /tmp/ $ USER gaussdb/.s.PGSQL. $PGPORT is created by default to prevent some applications from creating or overwriting the socket file in the /tmp...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/11/20 12:0 a.m.9 views

GaussDB Kernel: Ensuring the Existence of the Socket File

Some application programs may search for the socket file in the /tmp directory to deceive the server. During the system startup, the socket file /tmp/ $ USER mppdb/.s.PGSQL. $PGPORT is created by default to prevent some applications from creating or overwriting the socket file in the /tmp...

7.3AI score
Exploits0
CNVD
CNVD
added 2020/11/17 12:0 a.m.2 views

Gila CMS File Upload Vulnerability

Gila CMS is an open source content management system CMS based on PHP and MySQL. A file upload vulnerability exists in Gila CMS 1.16.0. An attacker can exploit this vulnerability to upload a shell to the tmp directory, which can then be used to execute PHP files using .htaccess via the logging...

7.2CVSS7.4AI score0.0162EPSS
Exploits1References1
Rows per page
Query Builder