Lucene search
K

5 matches found

Cvelist
Cvelist
added 8 hours ago10 views

CVE-2026-58652 luci-app-travelmate - Arbitrary Command Execution via UCI Script Parameter

luci-app-travelmate and the travelmate package contain a privilege-escalation flaw: a LuCI/rpcd session holding the luci-app-travelmate write ACL is granted config-wide UCI write access to the travelmate configuration. While the LuCI UI restricts the auto-login script picker to...

7.7CVSS
Exploits0References7
OSV
OSV
added 2025/04/03 2:11 p.m.4 views

BIT-JOOMLA-2020-35616 [20201107] - Core - Write ACL violation in multiple core views

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations...

7.5CVSS7.5AI score0.06095EPSS
Exploits0References2
OSV
OSV
added 2020/12/28 8:15 p.m.13 views

CVE-2020-35616

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations...

7.5CVSS7.1AI score
Exploits0References1
Prion
Prion
added 2020/12/28 8:15 p.m.12 views

Input validation

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations...

5CVSS7.5AI score0.06095EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/28 7:39 p.m.150 views

CVE-2020-35616

Joomla! versions 1.7.0 through 3.9.22 are affected by an ACL write-violation vulnerability due to insufficient input validation when processing ACL rulesets. The issue can lead to write ACL violations in multiple core views, with the security entries indicating a high integrity impact (CVE-2020-3...

7.5CVSS7.5AI score0.06095EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder