4 matches found
CVE-2023-31133
Ghost is an app for new-media creators with tools to build a website, publish content, send newsletters, and offer paid subscriptions to members. Prior to version 5.46.1, due to a lack of validation when filtering on the public API endpoints, it is possible to reveal private fields via a brute...
Ghost CMS 5.42.1 - Path Traversal (CVE-2023-32235)
Binary data ghostcmspathtraversalcve-2023-32235.nbin...
SUSE CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
PT-2019-6134 · Bluez +2 · Bluez +2
Name of the Vulnerable Software and Affected Versions: BlueZ versions through 5.48 Description: A heap-based buffer overflow was discovered in the bluetoothd component of BlueZ. The issue is caused by the lack of size checks when appending data to the output buffer in the service attr req functio...