Skip to content

TechMedia

Header Image
Category

CRITICAL

104 Posts

Featured

Posted byWpmaster
[vm2] vm2 vulnerable to sandbox escape
Posted byWpmaster
[go.etcd.io/etcd/v3] Etcd-io Improper Authentication vulnerability
Posted byWpmaster
[github.com/sjqzhang/go-fastdfs] sjqzhang go-fastdfs vulnerable to path traversal
Posted byWpmaster
[knplabs/knp-snappy] PHAR deserialization allowing remote code execution

[cakephp/database] CakePHP Database\\Query::offset() and limit() methods are vulnerable to SQL injection

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/21/202301/26/2023

Impact
The Cake\Database\Query::limit() and Cake\Database\Query::offset() methods are vulnerable to SQL injection if passed un-sanitized user request data.
Patches
This issue has been fixed in 4.2.12, 4.3.11, 4.4.10
Workarounds
Using CakePHP’s Paginati…

[org.jeecgframework.boot:jeecg-module-system] Jeecg-boot is vulnerable to SQL injection

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/20/202301/27/2023

Jeecg-boot v3.4.4 was discovered to contain a SQL injection vulnerability via the component /sys/dict/queryTableData. A patch was released in commit 0fc374.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-47105
https://github.com/jeecgboot/jeecg-…

[shopware/platform] Shopware vulnerable to Improper Control of Generation of Code in Twig rendered views

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/18/202301/18/2023

Impact
In Twig environment without the Sandbox extension, it is possible to refer to PHP functions in twig filters like map, filter, sort. This allows in the template to call any global PHP function.
Patches
The problem has been fixed with 6.4.18.1 wi…

[liftkit/database] SQL Injection in liftkit/database

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/16/202301/25/2023

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to ad…

[publify_core] Integer overflow in publify_core

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/15/202301/25/2023

Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10 due to an unlimited length user name field.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-1812
https://github.com/publify/publify/commit/29a5837c29620e33857d7a5…

[publify_core] Publify Improper Input Validation vulnerability

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/15/202301/24/2023

Improper Input Validation in GitHub repository publify/publify prior to 9.2.10.
References

https://nvd.nist.gov/vuln/detail/CVE-2023-0299
https://github.com/publify/publify/commit/ca46da283572b4f8c0b5aa245008756c8a5fd1b1
https://huntr.dev/bounties/004…

[pyload-ng] Code Injection in pyload-ng

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/14/202301/26/2023

Code Injection in GitHub repository pyload/pyload prior to 0.5.0b3.dev31.
References

https://nvd.nist.gov/vuln/detail/CVE-2023-0297
https://github.com/pyload/pyload/commit/7d73ba7919e594d783b3411d7ddb87885aea782d
https://huntr.dev/bounties/3fd606f7-83…

[webbrowser] webbrowser-rs allows attackers to access arbitrary files via supplying a crafted URL

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/14/202301/24/2023

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-45299
https://github.com/offalltn/CVE-2022-45299
https://git…

[global-modules-path] global-modules-path Command Injection vulnerability

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/13/202301/28/2023

Versions of the package global-modules-path before 3.0.0 are vulnerable to Command Injection due to missing input sanitization or other checks and sandboxes being employed to the getPath function.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-2…

[webpa/webpa] WebPA SQL Injection vulnerability

  • Posted inCRITICAL
  • Posted byWpmaster
  • 01/08/202301/13/2023

A vulnerability was found in WebPA up to 3.1.1. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. Upgrading to version 3.1.2 can to address this issue. The name of the patch is 8836c4f54…

Posts navigation

Previous Posts 1 2 3 4 … 11 Next Posts
TechMedia
WordPress theme by componentz

Archives

2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30
Hit enter to search or ESC to close