An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows attackers to execute arbitrary code via uploading a crafted PNG file.Read More ...
Continue Reading
December 19, 2022
### Impact A local file inclusion vulnerability exists in Cortex versions v1.13.0, v1.13.1 and v1.14.0, where a malicious actor could remotely read local files as a result of parsing maliciously craft ...
Continue Reading
December 19, 2022
Alist v3.4.0 is vulnerable to Directory Traversal,Read More ...
Continue Reading
December 19, 2022
A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10. This vulnerability affects unknown code of the file cn.hutool.core.util.ZipUtil.java. The manipulation leads to reso ...
Continue Reading
December 19, 2022
 ## Summary At the end of September, GTSC reported an attack on critical infras ...
Continue Reading
December 19, 2022
CONPROSYS HMI System (CHS) Ver.3.4.4?and earlier allows a remote unauthenticated attacker to execute an arbitrary OS command on the server where the product is running by sending a specially crafted r ...
Continue Reading
December 18, 2022
A vulnerability was found in Shoplazza LifeStyle 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/api/theme-edit/ of the component Product Han ...
Continue Reading
December 18, 2022
A vulnerability, which was classified as problematic, has been found in Shoplazza 1.1. This issue affects some unknown processing of the file /admin/api/admin/articles/ of the component Add Blog Post ...
Continue Reading
December 18, 2022
Back to Main
