4 matches found
Missing Authentication for Critical Function
Overview vite is a Native-ESM powered web dev build tool Affected versions of this package are vulnerable to Missing Authentication for Critical Function via the fetchModule method exposed through the WebSocket interface when the server is explicitly exposed to the network and WebSocket is enable...
PT-2025-42423
Name of the Vulnerable Software and Affected Versions FileX versions prior to 6.4.2 Description The FileX RAM disk driver, a component of the Eclipse Foundation ThreadX file support module, contains a possible buffer overflow. This issue can lead to remote execution when processing crafted networ...
Authorization Bypass Through User-Controlled Key
Overview in2code/femanager is a Modern TYPO3 Frontend User Registration. Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the identity parameter when saving user-submitted data. An attacker can gain unauthorized access and modify sensitive...
PT-2024-13429 · Synology · Photo Station
Name of the Vulnerable Software and Affected Versions: Photo Station versions prior to 6.4.2 Description: A path traversal vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and...