3 matches found
CVE-2023-45593
A CWE-184 “Incomplete List of Disallowed Inputs” vulnerability in the embedded Chromium browser concerning the handling of alternative URLs, other than “ http://localhost” allows a physical attacker to read arbitrary files on the file system, alter the configuration of the embedded browser, and...
aiven-db-migrate 路径遍历漏洞
aiven-db-migrate is an Aiven open source application. A path traversal vulnerability exists in aiven-db-migrate versions prior to 1.0.7, which stems from an elevation of privilege vulnerability that could lead to superuser privilege acquisition...
CVE-2023-1536
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.7...