EUVD-2024-41569

Malicious code in bioql PyPI...

CVE-2020-0419

In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...

CVE-2024-45842

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Unintended internal files may be retrieved when processing crafted HTTP requests...

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...

CVE-2024-45842

The CVE-2024-45842 issue affects Sharp and Toshiba Tec MFPs (multifunction printers). Root cause: improper processing of URI data in HTTP PUT requests, leading to a path traversal vulnerability. Impact: unintended internal files may be retrieved when processing crafted HTTP requests. Connected so...

CVE-2024-45842

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Unintended internal files may be retrieved when processing crafted HTTP requests...

CVE-2020-0419

In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

ASB-A-142125338

In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

KLA10822 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, elevate privileges, cause denial of service, conduct XSS or obtain sensitive information. Below is a complete list of...

Brooky CubeCart 2.0.1 - SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11337/info It is reported that CubeCart is susceptible to an SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI data prior to including it in an SQL query...

Project Woodstock 404 Error Page UTF-7 Encoded XSS

The remote web server contains a web application built using Woodstock components, which are user interface components for the web- based on Java Server Faces and AJAX. Woodstock is part of Sun Glassfish Enterprise Server and can also be used with other Java web containers, such as JBoss, Tomcat,...

WordPress Plugin Wp-FileManager 'ajaxfilemanager.php'任意文件上传漏洞

BUGTRAQ ID: 27151 CNCAN ID:CNCAN-2008010813 WordPress Plugin Wp-FileManager是一款基于WordPress的文件管理程序。 WordPress Plugin Wp-FileManager不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞上传任意文件。 问题是由于'ajaxfilemanager.php'脚本对用户提交的WEB参数处理缺少充分过滤，可提交任意文件，导致以WEB权限执行。 Wp-FileManager 1.2 厂商解决方案 --------- 目前没有解决方案提供：...

Aeries Browser Interface 'LostPwd.asp' SQL注入漏洞

BUGTRAQ ID: 26962 CNCAN ID:CNCAN-2007122401 Aeries Browser Interface是一款基于ASP的WEB应用程序。 Aeries Browser Interface不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息或操作数据库。 问题是由于'LostPwd.asp'脚本对用户提交的WEB参数处理缺少充分过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Eagle Software AERIES Browser Interface 3.7.9.17...

WordPress未授权帖子访问漏洞

WordPress是一款流行的博客程序。 WordPress不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞未授权读取之前发布的帖子。 问题是Wordpress信任$SERVER'REQUESTURI'全局变量，操作$SERVER'REQUESTURI'可导致多个跨站缺陷，虽然攻击者不能控制所有$SERVER变量，但也不能信任所有变量。 如： htttp://localhost/wordpress/'wp-admin/ 会导致$SERVER'REQUESTURI'和$SERVER'PHPSELF'包含如下值： htttp://localhost/wordpress/'wp-admi...

SWSoft Confixx Fehler.Inc.PHP远程文件包含漏洞

SWSoft Confixx Fehler.Inc.PHP Remote File Include Vulnerability SWSoft Confixx是一款基于PHP的WEB应用程序。 SWSoft Confixx不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于'Fehler.Inc.PHP'脚本对用户提交的WEB参数缺少过滤，指定远程服务器上的任意文件作为包含参数，可导致以WEB权限执行任意PHP代码。 SWSoft Confixx Professional 3.2.1 目前没有详细解决方案提供：...

Neon LibNeon非ASCII字符URI数据远程拒绝服务漏洞

Neon LibNeon存在远程拒绝服务问题。 Neon LibNeon当处理包含非ASCII字符的URI数据时存在漏洞，攻击者可以利用漏洞使使用此库的应用程序崩溃，造成拒绝服务攻击。 Neon Client Library 0.26.2 Neon Client Library 0.26.1 Neon Client Library 0.26 MandrakeSoft Linux Mandrake 2007.0 x8664 MandrakeSoft Linux Mandrake 2007.0 Mandriva Linux可参考如下公告：...

CWMCounter Statistic.PHP远程文件包含漏洞

CWMCounter是一款基于PHP的WEB应用程序。 CWMCounter不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Statistic.PHP'脚本对用户提交的WEB参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 cwm-design cwmCounter 5.1.1 目前没有详细解决方案提供： http://explorer.cwm-design.de/index.php?d=27&infodir=29&PHPSESSID=a91ed867b39478796c44f505cec3c2c...

PhpLeague "cheminmini"远程文件包含漏洞

PhpLeague是一款基于PHP的WEB应用程序。 PhpLeague不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'consult/miniseul.php'和'config.php'脚本对用户提交的'cheminmini'参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 PhpLeague 0.x 升级到0.82版本： http://phpleague.univert.org/...

Brooky CubeCart 2.0.1 - SQL Injection Vulnerability

Brooky CubeCart 2.0.1 SQL Injection Vulnerability. CVE-2004-1580. Webapps exploit for php platform source: http://www.securityfocus.com/bid/11337/info It is reported that CubeCart is susceptible to an SQL injection vulnerability. This issue is due to a failure of the application to properly...