Lucene search
K

5 matches found

OSV
OSV
added 2025/06/30 5:46 p.m.4 views

GHSA-W7QC-6GRJ-W7R8 File Browser vulnerable to command execution allowlist bypass

Summary The Command Execution feature of Filebrowser only allows the execution of shell command which have been predefined on a user-specific allowlist. The implementation of this allowlist is erroneous, allowing a user to execute additional commands not permitted. Impact A user can execute more...

8CVSS6.6AI score0.00513EPSS
Exploits1References7
NVD
NVD
added 2025/02/11 11:15 a.m.6 views

CVE-2025-23403

A vulnerability has been identified in SIMATIC IPC DiagBase All versions, SIMATIC IPC DiagMonitor All versions. The affected device do not properly restrict the user permission for the registry key. This could allow an authenticated attacker to load vulnerable drivers into the system leading to...

7.3CVSS0.0014EPSS
Exploits0References1
OSV
OSV
added 2023/05/15 11:15 a.m.11 views

SUSE-SU-2023:2205-1 Security update for postgresql14

This update for postgresql14 fixes the following issues: Updated to version 14.8: - CVE-2023-2454: Fixed an issue where a user having permission to create a schema could hijack the privileges of a security definer function or extension script bsc1211228. - CVE-2023-2455: Fixed an issue that could...

7.2CVSS6AI score0.0119EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2001/09/19 12:0 a.m.34 views

majordomo.1.94.4.txt

Hi, I found something to discuss, this time involving majordomo. This was tested on a Slackware linux 8.0 kernel 2.4.8; majordomo version 1.94.4, I also tested the other versions and all default installs had the same problem, note that the versions 1.94.1 an 1.94.2 should NOT be used anymore, tho...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/12/08 12:0 a.m.54 views

E-zine (MDMA group) опубликовали список уязвимостей во многих программных продуктах

Proxy Plus - небезопасные установки по-умолчанию, NiteServer FTPd - возможна DoS-атака, ISpy Webcam - хранит пароль в открытом виде, XiRCON IRC client - переполнение буфера, Offline Explorer - чтение локальных файлов с сервера, Argosoft FTP Server - обратный путь в директориях и множественные...

0.4AI score
Exploits0References2Affected Software4
Rows per page
Query Builder