6 matches found
CVE-2026-47899 Arbitrary File Read, Write, Rename, and Delete in Logseq
The Electron preload script in Logseq exposes an API method that allows the renderer process to invoke IPC handlers without proper path validation. An attacker with JavaScript execution in the renderer e.g. via XSS or a malicious plugin, can read, write, or delete arbitrary files on the user's...
PT-2024-28264 · Wavlink · Wavlink Wn551K1
Name of the Vulnerable Software and Affected Versions: Wavlink WN551K1 affected versions not specified Description: The issue allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component. Recommendations: At the moment, there is no information about a newer...
PT-2023-2785 · Microsoft · Edge
Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to errors in security settings, allowing a remote attacker to bypass security restrictions. Recommendations: At the moment, there is no informatio...
PT-2022-37534 · Unknown · Data Importer
Name of the Vulnerable Software and Affected Versions: data importer affected versions not specified Description: The issue is related to security problems in the data importer. To address this, an update rebuilds the current containerized data importer images against current base images...
PT-1999-1504 · Matt · Whois.Cgi
Name of the Vulnerable Software and Affected Versions: Matt's Whois program whois.cgi affected versions not specified Description: The issue allows remote attackers to execute commands via shell metacharacters in the domain entry. Recommendations: At the moment, there is no information about a...
PT-1997-1104 · Webcom · Cgi Guestbook
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue allows for the remote execution of arbitrary commands through the Guestbook CGI program. Recommendations: At the moment, there is no information about a newer version that...