GHSA-jg74-mwgw-v6x3: Vault SSH Secrets Engine Configuration Did Not Restrict Valid Principals By Default

GHSA-h4h5-9833-v2p4: Rancher agents can be hijacked by taking over the Rancher Server URL

GHSA-g54f-66mw-hv66: Agnai vulnerable to Relative Path Traversal in Image Upload

GHSA-h355-hm5h-cm8h: Agnai File Disclosure Vulnerability: JSON via Path Traversal 

GHSA-mpch-89gm-hm83: Agnai vulnerable to Remote Code Execution via JS Upload using Directory Traversal

Dolibarr before 17.0.1 allows remote code execution by an authenticated user via an uppercase manipulation: <?PHP instead of <?php in injected data.

**Dolibarr vulnerable to remote code execution via uppercase manipulation**

Moderate severity GitHub Reviewed Published May 29, 2023 to the GitHub Advisory Database • Updated May 30, 2023

Headline

GHSA-9wqr-5jp4-mjmh: Dolibarr vulnerable to remote code execution via uppercase manipulation

Related news

ghsa: Latest News