Headline

GHSA-g389-rf5p-fg56: Badaso vulnerable to Remote Code Execution (RCE)

Badaso version 2.6.3 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly validate the data uploaded by users.

1 year ago

ghsa

Open in Source

#git #rce #perl #auth

Badaso vulnerable to Remote Code Execution (RCE)

Critical severity GitHub Reviewed Published Nov 25, 2022 • Updated Dec 2, 2022

1 year ago

CVE

Open in Source

#web #ios #android #mac #windows #google #linux #js #git #java #perl #auth

ghsa: Latest News

GHSA-76mw-6p95-x9x5: pac4j-core affected by a Java deserialization vulnerability

2 days ago

ghsa

GHSA-6h64-g7cj-hj56: Lord of Large Language Models (LoLLMs) path traversal vulnerability in the api open_personality_folder endpoint

2 days ago

ghsa

GHSA-vgxq-6rcf-qwrw: angular-base64-upload vulnerable to unauthenticated remote code execution

2 days ago

ghsa

GHSA-8rm2-93mq-jqhc: Extract has insufficient checks allowing attacker to create symlinks outside the extraction directory.

2 days ago

ghsa

GHSA-gx9m-whjm-85jf: DOMpurify has a nesting-based mXSS

2 days ago

ghsa

Headline

GHSA-g389-rf5p-fg56: Badaso vulnerable to Remote Code Execution (RCE)

Related news

ghsa: Latest News