CVE-2025-41759

An administrator may attempt to block all networks by specifying "\" or "all" as the network identifier. However, these values are not supported and do not trigger any validation error. Instead, they are silently interpreted as network 0 which results in no networks being blocked at all...

EUVD-2022-6301

Malicious code in bioql PyPI...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The leafInfo.match function in Beego v2.0.3 and below uses path.join to deal with wildcardvalues which can lead to cross directory risk...

CVE-2022-31836

The leafInfo.match function in Beego v2.0.3 and below uses path.join to deal with wildcardvalues which can lead to cross directory risk...

Cross site scripting

The leafInfo.match function in Beego v2.0.3 and below uses path.join to deal with wildcardvalues which can lead to cross directory risk...

Beego 路径遍历漏洞

Beego is an open source web framework based on the Go language. A security vulnerability exists in Beego v2.0.3 and earlier versions, which stems from the use of path.join by the leafInfo.match function to handle wildcardValues, which may lead to cross-directory risks...

openssh: AcceptEnv environment restriction bypass flaw

It was found that OpenSSH did not properly handle certain AcceptEnv parameter values with wildcard characters. A remote attacker could use this flaw to bypass intended environment variable restrictions...