4 matches found
WordPress WP Child Theme Generator < 1.1.3 - Arbitrary File Upload
Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator- from n/a through 1.0.9. id: CVE-2023-47873 info: name: WordPress WP Child Theme Generator 1.1.3 - Arbitrary File Upload author: cysamu,Crux severity...
CVE-2025-24960 Missing Input validation for filename in backups endpoint in Jellystat
Jellystat is a free and open source Statistics App for Jellyfin. In affected versions Jellystat is directly using a user input in the routes. This can lead to Path Traversal Vulnerabilities. Since this functionality is only for admins, there is very little scope for abuse. However, the DELETE...
PT-2023-30712 · Answerdev · Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to v1.1.3 Description: The issue is related to missing authentication for a critical function in the GitHub repository answerdev/answer. This could potentially allow unauthorized access to sensitive data or...
PT-2023-10824 · Ping Identity · Ping Identity Self-Service Account Manager
Name of the Vulnerable Software and Affected Versions: Ping Identity Self-Service Account Manager version 1.1.2 Description: A problematic issue has been found in the software, affecting some unknown functionality of the file src/main/java/com/unboundid/webapp/ssam/SSAMController.java. This issue...