3 matches found
External Control of File Name or Path
Overview Affected versions of this package are vulnerable to External Control of File Name or Path via the output option in server mode. An attacker can create or append to arbitrary files on the host filesystem by sending crafted requests to the REST API, as the file path is taken directly from...
Improper Use of Validation Framework
Overview lomkit/laravel-rest-api is an A package to build quick and robust rest api for the Laravel framework. Affected versions of this package are vulnerable to Improper Use of Validation Framework due to the way validation rules are merged across different contexts such as index, store, and...
PT-2022-27219 · Unknown · Ipti Br.Tag
Name of the Vulnerable Software and Affected Versions: ipti br.tag versions prior to 2.13.0 Description: A vulnerability was found in ipti br.tag, which has been declared as problematic. The manipulation of an unknown functionality leads to cross-site scripting. The attack can be launched remotel...