2 matches found
EUVD-2025-9624
Malicious code in bioql PyPI...
GHSA-QMFX-75FF-8MW6 Listing of upload directory contents possible
There's an security issue in prosody-filer versions 1.0.1 which leads to unwanted directory listings of download directories. An attacker is able to list previous uploads of a certain user by shortening the URL and accessing a URL subdirectors other than /upload/ or the corresponding user defined...