Lucene search
K

5 matches found

Snyk
Snyk
added 2026/03/27 5:17 p.m.3 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine through improper implementation of the chroot isolation mechanism in the pongo2 template processing. An attacker can gain unauthorized access to read and write...

9.9CVSS6AI score0.00481EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/27 5:17 p.m.9 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine through improper implementation of the chroot isolation mechanism in the pongo2 template processing. An attacker can gain unauthorized access to read and write...

9.9CVSS6AI score0.00481EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/27 5:17 p.m.8 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine through improper implementation of the chroot isolation mechanism in the pongo2 template processing. An attacker can gain unauthorized access to read and write...

9.9CVSS6AI score0.00481EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/27 5:12 p.m.5 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the UploadAllFiles function during S3 restore operations when processing tar headers from a supplied backup archive. An attacker can cause the daemon to crash and disrupt the contr...

7.1CVSS5.9AI score0.00385EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/27 5:9 p.m.55 views

UNIX Symbolic Link (Symlink) Following

Overview Affected versions of this package are vulnerable to UNIX Symbolic Link Symlink Following through the use of a predictable temporary file path in the screenshot handling process. An attacker can cause truncation and ownership changes of arbitrary files by pre-placing symlinks in the /tmp...

7.8CVSS6AI score0.0035EPSS
Exploits1References2
Rows per page
Query Builder