Security
Headlines

Headlines Latest CVEs

Headline

GHSA-6xj9-hpq3-w3qw: Code injection in MCMS

An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.

2 years ago

#vulnerability #git

Code injection in MCMS

High severity GitHub Reviewed Published Jun 3, 2022 • Updated Jun 3, 2022

Related news

CVE-2022-30506: MCMSv5.2.7存在文件上传漏洞 · Issue #I56AID · 铭飞/MCMS - Gitee.com

An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.

2 years ago

#vulnerability #js #git

ghsa: Latest News

GHSA-27wf-5967-98gx: Kubernetes kubelet arbitrary command execution

11 hours ago

GHSA-mr95-vfcf-fx9p: Apache Answer: Predictable Authorization Token Using UUIDv1

11 hours ago

GHSA-pqhp-25j4-6hq9: smol-toml has a Denial of Service via malicious TOML document using deeply nested inline tables

12 hours ago

GHSA-v5h2-q2w4-gpcx: Sentry improper error handling leaks Application Integration Client Secret

12 hours ago

GHSA-8w49-h785-mj3c: Tornado has an HTTP cookie parsing DoS vulnerability

12 hours ago