Lucene search

K

Nzbget Security Vulnerabilities

cve
cve

CVE-2023-49102

NZBGet 21.1 allows authenticated remote code execution because the unarchive programs (7za and unrar) preserve executable file permissions. An attacker with the Control capability can execute a file by setting the value of SevenZipCommand or UnrarCmd. NOTE: This vulnerability only affects products....

8.8CVSS

8.9AI Score

0.001EPSS

2023-11-22 10:15 PM
8
cve
cve

CVE-2008-2266

uulib/uunconc.c in UUDeview 0.5.20, as used in nzbget before 0.3.0 and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on a temporary filename generated by the tempnam function. NOTE: this may be a CVE-2004-2265...

6.1AI Score

0.0004EPSS

2008-05-16 12:54 PM
21