type:osv

Daily Hot! Security news Exploit updates Blogs review Bugbounty Linux vulnerabilities Scanners plugins updates CVE Feed Security Tools Firefox vulnerabilities CVSS High Score Windows Vulnerabilities Popular in social networks Wild exploited log4j news

osv

Permissive regex leads to domain filter bypass

Description In SafeURL it is possible to specify a list of domains that should be matched before a request is sent out. The regex used to compare domains did not work as intended. Impact The regex used was: re.match("(?i)^%s" % domain, value) This has two problems, first that only the beginning...

2023-01-27T01:04:27

osv

DataFlow upload remote code execution vulnerability

Impact An administrator with the permissions to upload files via DataFlow and to create products was able to execute arbitrary code via the convert...

2023-01-27T00:56:58

osv

Fix for authenticated remote code execution through layout update

Impact A layout block was able to bypass the block blacklist to execute remote...

2023-01-27T00:56:39

osv

Initial debug-host handler implementation could leak information and facilitate denial of service

Impact version 1.5.0 and 1.6.0 when using the new debug-host feature could expose unnecessary information about the host Patches Use 1.6.1 or newer Workarounds Downgrade to 1.4.0 or set debug-host to empty References https://github.com/fortio/proxy/pull/38 Q&A...

2023-01-27T00:55:27

osv

DoS vulnerability in MaliciousCode filter

Impact Infinite loop in malicious code filter in certain conditions. Workarounds...

2023-01-27T00:55:11

osv

Fix for arbitrary file deletion in customer media allows for remote code execution

Impact Magento admin users with access to the customer media could execute code on the...

2023-01-27T00:54:59

osv

Fix for arbitrary command execution in custom layout update through blocks

Impact Custom Layout enabled admin users to execute arbitrary commands via block...

2023-01-27T00:54:46

osv

Cross-site Scripting in modoboa

Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to...

2023-01-27T00:30:18

osv

Cross-site Scripting in modoboa

Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to...

2023-01-27T00:30:18

osv

Improper Certificate Validation in pyload-ng

Improper Certificate Validation in GitHub repository pyload/pyload prior to...

2023-01-27T00:30:18

osv

Cross-site Scripting in pyload-ng

Cross-site Scripting (XSS) - Stored in GitHub repository pyload/pyload prior to...

2023-01-27T00:30:18

osv

flash_tool Gem for Ruby File Download Handling Arbitrary Command Execution

flash_tool Gem for Ruby contains a flaw that is triggered during the handling of downloaded files that contain shell characters. With a specially crafted file, a context-dependent attacker can execute arbitrary...

2023-01-26T23:57:52

osv

Devise Gem for Ruby Unauthorized Access Using Remember Me Cookie

Devise version before 3.5.4 uses cookies to implement a "Remember me" functionality. However, it generates the same cookie for all devices. If an attacker manages to steal a remember me cookie and the user does not change the password frequently, the cookie can be used to gain access to the...

2023-01-26T23:54:07

osv

xaviershay-dm-rails Gem for Ruby exposes sensitive information via the process table

xaviershay-dm-rails Gem for Ruby contains a flaw in the execute() function in /datamapper/dm-rails/blob/master/lib/dm-rails/storage.rb. The issue is due to the function exposing sensitive information via the process table. This may allow a local attack to gain access to MySQL credential...

2023-01-26T23:51:40

osv

Remote Code Execution in com.bstek.uflo:uflo-core

All versions of the package com.bstek.uflo:uflo-core are vulnerable to Remote Code Execution (RCE) in the ExpressionContextImpl class via jexl.createExpression(expression).evaluate(context); functionality, due to improper user input...

2023-01-26T21:30:25

osv

Directory Traversal in onnx

Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example...

2023-01-26T21:30:25

osv

Arbitrary file write in net.mingsoft:ms-mcms

MCMS v5.2.10 and below was discovered to contain an arbitrary file write vulnerability via the component...

2023-01-26T21:30:20

osv

Sandbox bypass in Jenkins Script Security Plugin

A sandbox bypass vulnerability involving map constructors in Jenkins Script Security Plugin 1228.vd93135a_2fb_25 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the...

2023-01-26T21:30:19

osv

Cleartext Transmission of Sensitive Information in Jenkins JIRA Pipeline Steps Plugin

Jenkins JIRA Pipeline Steps Plugin 2.0.165.v8846cf59f3db and earlier transmits the private key in plain text as part of the global Jenkins configuration form, potentially resulting in their...

2023-01-26T21:30:18

osv

Missing permissions check in Jenkins JIRA Pipeline Steps Plugin

A missing permission check in Jenkins JIRA Pipeline Steps Plugin 2.0.165.v8846cf59f3db and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in...

2023-01-26T21:30:18

0 of total 40933