Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2025/04/09 1:37 a.m.5 views

SUSE CVE-2025-3033

After selecting a malicious Windows .url shortcut from the local filesystem, an unexpected file could be uploaded. This bug only affects Firefox on Windows. Other operating systems are unaffected.. This vulnerability was fixed in Firefox 137 and Thunderbird 137...

7.7CVSS5.8AI score0.0017EPSS
Exploits0References3
OSV
OSV
added 2025/04/03 2:12 p.m.9 views

BIT-JOOMLA-2021-23132 [20210306] - Core - com_media allowed paths that are not intended for image uploads

An issue was discovered in Joomla! 3.0.0 through 3.9.24. commedia allowed paths that are not intended for image uploads...

7.5CVSS7.5AI score0.06529EPSS
Exploits2References2
OSV
OSV
added 2022/05/13 1:31 a.m.15 views

GHSA-QWV2-2X8G-G43G Gem in a Box vulnerable to Cross-site Request Forgery

geminabox aka Gem in a Box before 0.13.7 has CSRF, as demonstrated by an unintended gem upload...

8.8CVSS8.6AI score0.00496EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2022/05/13 1:31 a.m.20 views

Gem in a Box vulnerable to Cross-site Request Forgery

geminabox aka Gem in a Box before 0.13.7 has CSRF, as demonstrated by an unintended gem upload...

8.8CVSS3.1AI score0.00496EPSS
Exploits1References6Affected Software1
RubySec
RubySec
added 2022/05/13 12:0 a.m.19 views

Gem in a Box vulnerable to Cross-site Request Forgery

geminabox aka Gem in a Box before 0.13.7 has CSRF, as demonstrated by an unintended gem upload...

8.8CVSS3.1AI score0.00496EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder