15 matches found
EUVD-2024-16300
Malicious code in bioql PyPI...
EUVD-2024-16394
Malicious code in bioql PyPI...
CVE-2024-0505
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has bee...
The vulnerability of the `getRemoteUrl2File` function in the `src\main\java\com\java3y\austin\support\utils\AustinFileUtils.java` file of the ZhongFuCheng3y Austin software, which allows a hacker to disclose protected information.
The vulnerability of the getRemoteUrl2File function in the src\main\java\com\java3y\austin\support\utils\AustinFileUtils.java file of the ZhongFuCheng3y application is related to insufficient validation of incoming requests. Exploiting this vulnerability could allow a malicious actor to disclose...
CVE-2024-0601
A vulnerability was found in ZhongFuCheng3y Austin 1.0. It has been rated as critical. Affected by this issue is the function getRemoteUrl2File of the file src\main\java\com\java3y\austin\support\utils\AustinFileUtils.java of the component Email Message Template Handler. The manipulation leads to...
Server side request forgery (ssrf)
A vulnerability was found in ZhongFuCheng3y Austin 1.0. It has been rated as critical. Affected by this issue is the function getRemoteUrl2File of the file src\main\java\com\java3y\austin\support\utils\AustinFileUtils.java of the component Email Message Template Handler. The manipulation leads to...
CVE-2024-0601
CVE-2024-0601 affects ZhongFuCheng3y Austin 1.0, specifically the getRemoteUrl2File function in AustinFileUtils.java (Email Message Template Handler). Multiple connected sources (NVD, Red Hat, PRION, PT-SEC) corroborate a server-side request forgery (SSRF) condition triggered by insufficient vali...
CVE-2024-0601 ZhongFuCheng3y Austin Email Message Template AustinFileUtils.java getRemoteUrl2File server-side request forgery
A vulnerability was found in ZhongFuCheng3y Austin 1.0. It has been rated as critical. Affected by this issue is the function getRemoteUrl2File of the file src\main\java\com\java3y\austin\support\utils\AustinFileUtils.java of the component Email Message Template Handler. The manipulation leads to...
CVE-2024-0505
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has bee...
CVE-2024-0505
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has bee...
Design/Logic Flaw
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has bee...
CVE-2024-0505 ZhongFuCheng3y Austin Upload Material Menu MaterialController.java getFile unrestricted upload
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has bee...
CVE-2024-0505 ZhongFuCheng3y Austin Upload Material Menu MaterialController.java getFile unrestricted upload
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has bee...
CVE-2024-0505
ZhongFuCheng3y Austin 1.0 is affected by a flaw in the getFile function of MaterialController.java (Upload Material Menu). The defect enables unrestricted file upload, as described across multiple sources, with exploit publicly disclosed. Affected component is the Upload Material Menu, file path ...
PT-2024-15622 · Unknown · Zhongfucheng3Y Austin
Name of the Vulnerable Software and Affected Versions: ZhongFuCheng3y Austin version 1.0 Description: A critical issue affects the getFile function of the MaterialController.java file in the Upload Material Menu component, leading to unrestricted upload. The exploit has been disclosed to the publ...