5 matches found
PT-2024-36252 · Unknown · Vimeography
Name of the Vulnerable Software and Affected Versions: Vimeography versions prior to 2.4.4 Vimeography version 2.4.4 Description: The issue is related to the generation of error messages that contain sensitive information, allowing the retrieval of embedded sensitive data. Recommendations: For...
Improper Input Validation
Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Improper Input Validation through the PHP filter chain. An attacker with administrative privileges can read files from the system outside of the intended directories and...
PT-2024-19279 · Nextcloud · Nextcloud Global Site Selector
Name of the Vulnerable Software and Affected Versions: Nextcloud Global Site Selector versions prior to 1.4.1 Nextcloud Global Site Selector versions prior to 2.1.2 Nextcloud Global Site Selector versions prior to 2.3.4 Nextcloud Global Site Selector versions prior to 2.4.5 Description: The...
Improper Neutralization of Special Elements Used in a Template Engine
Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine due to the improper neutralization of special elements used in a template engine. An attacker can...
Missing Support for Integrity Check
Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Missing Support for Integrity Check due to improper handling of authorization checks. An attacker can bypass security features and access restricted functionalities without...