18 matches found
EUVD-2018-8658
Malware in sbrugna...
EUVD-2021-28594
Malicious code in bioql PyPI...
EUVD-2024-0065
Malicious code in bioql PyPI...
EUVD-2025-23245
Malicious code in bioql PyPI...
ZKTeco BioTime < 9.0.1 (20240617.19506) Multiple Vulnerebilities
According to its self-reported version, the instance of ZKTeco BioTime running on the remote web server is prior to 9.0.1 20240617.19506. It is, therefore, affected by multiple vulnerabilities. - A path traversal vulnerability in the iclock API allows unauthenticated attackers to read arbitrary...
AlmaLinux 9 : ghostscript (ALSA-2025:7422)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7422 advisory. ghostscript: dangling pointer in gdevprnopenprinterseekable CVE-2023-46751 ghostscript: Buffer Overflow in Ghostscript PDF XRef Stream Handling...
CVE-2021-41578
mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead ...
CVE-2013-1891
In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed...
Linux Distros Unpatched Vulnerability : CVE-2024-46953
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output...
CVE-2019-11508
In Pulse Secure Pulse Connect Secure PCS before 8.1R15.1, 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an authenticated attacker via the admin web interface can exploit Directory Traversal to execute arbitrary code on the appliance...
CVE-2024-33502
An improper limitation of a pathname to a restricted directory 'path traversal' in Fortinet FortiManager, FortiAnalyzer versions 7.4.0 through 7.4.2 and 7.2.0 through 7.2.5 and 7.0.0 through 7.0.12 and 6.4.0 through 6.4.14 and 6.2.0 through 6.2.12 and 6.0.0 through 6.0.12 allows attacker to execu...
PT-2023-8926 · Sysaid · Sysaid
Name of the Vulnerable Software and Affected Versions: SysAid affected versions not specified Description: The issue is related to a path traversal vulnerability in the doPost method of the com.ilient.server.UserEntry class in SysAid, a service support and hardware and software control automation...
CVE-2022-38421 Adobe ColdFusion Application Server Directory Traversal Remote Code Execution Vulnerability
Adobe ColdFusion versions Update 14 and earlier and Update 4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does...
CVE-2022-38418 Adobe ColdFusion Application Server Directory Traversal Remote Code Execution Vulnerability
Adobe ColdFusion versions Update 14 and earlier and Update 4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does...
Ruby on Rails: File writing by Directory traversal at actionpack-page_caching and RCE by it
I found a directory traversal in actionpack-pagecaching. Some code may lead to RCE. https://github.com/rails/actionpack-pagecaching/blob/master/lib/actioncontroller/caching/pages.rbL143 ruby def cachefilepath, extension if path.empty? || path = %r\A/+\z name = "/index" else name =...
CVE-2015-8770
Directory traversal vulnerability in the setskin function in program/include/rcmailoutputhtml.php in Roundcube before 1.0.8 and 1.1.x before 1.1.4 allows remote authenticated users with certain permissions to read arbitrary files or possibly execute arbitrary code via a .. dot dot in the skin...
OpenCart 1.5.5.1 Directory Traversal Vulnerability
OpenCart version 1.5.5.1 suffers from a directory traversal vulnerability. Directory Traversal Vulnerabilities in OpenCart 1.5.5.1 ===================================================== Author: Janek Vind "waraxe" Date: 19. March 2013 Location: Estonia, Tartu Web:...
DSA-515 lha - several vulnerabilities
Bulletin has no description...