This affects all versions of package sonar-wrapper. The injection point is located in lib/sonarRunner.js. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku…

This affects the package conf-cfg-ini before 1.2.2. If an attacker submits a malicious INI file to an application that parses it with decode, they will…

This affects all versions of package deferred-exec. The injection point is located in line 42 in lib/deferred-exec.js Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri…

This affects all versions of package google-cloudstorage-commands. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database

This affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri…

All versions of package git-archive are vulnerable to Command Injection via the exports function. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku…

The Name Directory WordPress plugin before 1.25.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected…

The Name Directory WordPress plugin before 1.25.4 does not have CSRF check when importing names, and is also lacking sanitisation as well as escaping in…

The SP Project & Document Manager WordPress plugin through 4.57 uses an easily guessable path to store user files, bad actors could use that to…

The Exports and Reports WordPress plugin before 0.9.2 does not sanitize and validate data when generating the CSV to export, which could lead to a…