Lemmy user purging users or communities or banning users can delete images they didn't upload/exclusively use

Summary An improper uploaded media ownership check can result in inadvertent deletion of media when a user is banned with content removal or purged. This can lead to deletion of media that was not uploaded by the banned/purged user. This also applies to purged communities, in which case all media...

Gitlab -- vulnerabilities

Gitlab reports: An attacker can run pipeline jobs as an arbitrary user Developer user with admincomplianceframework permission can change group URL Admin push rules custom role allows creation of project level deploy token Package registry vulnerable to manifest confusion User with admingroupmemb...

Pivot 1.30 RC2 - Privilege Escalation Remote Code Execution

Pivot 1.30 RC2 - Privilege Escalation Remote Code Execution !/usr/bin/php -q -d shortopentag=on ? echo "Pivot = 1.30 RC2 privileges escalation / remote commands execution exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dorks: "Powered...

CVE-2004-1994

FuseTalk 4.0 allows remote attackers to ban other users via a direct request to banning.cfm...

CVE-2004-1994

FuseTalk 4.0 allows remote attackers to ban other users via a direct request to banning.cfm...