4 matches found
PT-2026-36304
The LabOne Q serialization framework uses a class-loading mechanism import cls to dynamically import and instantiate Python classes during deserialization. Prior to the fix, this mechanism accepted arbitrary fully-qualified class names from the serialized data without any validation of the target...
WordPress plugin PostmagThemes Demo Import 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...
WordPress plugin One Click Demo Import代码问题漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress One Click Demo Import plugin has a file upload vulnerability, which originates from the plugin does not validate the importe...
mySCADA myDESIGNER 路径遍历漏洞
MyScada MyDesigner is a rapid development platform for creating visualizations from the Czech company MyScada. A security vulnerability exists in mySCADA myDESIGNER that stems from the inability of mySCADA myDESIGNER version 8.20.0 and earlier to properly validate the contents of imported project...