Category: CVEs
-
May 16, 2022CVE-2022-30780 - Lighttpd - Denial of Service
Some versions of lighttpd mishandles HTTP request with an URL overflowing the maximum URL length, resulting in a denial of service.May 16, 2022 CVE-2022-30780 - Lighttpd - Denial of Service -
February 28, 2022CVE-2022-26159 - Ametys CMS - Unauthenticated information disclosure
The auto-completion plugin in Ametys CMS before 4.5.0 allows a remote unauthenticated attacker to read documents such as plugins/web/service/search/auto-completion/domain/en.xml.February 28, 2022 CVE-2022-26159 - Ametys CMS - Unauthenticated information disclosure -
July 17, 2021CVE-2021-43008 - Adminer - Arbitrary file read
Les versions d'Adminer <= 4.6.2 (corrigé dans la version 4.6.3) permettent à un attaquant d'effectuer une lecture arbitraire de fichier sur le serveur en connectant une base de données MySQL distante à l'Adminer.July 17, 2021 CVE-2021-43008 - Adminer - Arbitrary file read -
September 20, 2020CVE-2020-16147 - Telmat - Unauthenticated root RCE
An unauthenticated code injection on the login page of Telmat AccessLog, Gît@Box and Educ@Box with software version <= 6.0 (TAL_20180415) allows Remote Code Execution (RCE) as root.September 20, 2020 CVE-2020-16147 - Telmat - Unauthenticated root RCE -
September 20, 2020CVE-2020-16148 - Telmat - Authenticated root RCE
An authenticated code injection on the Administration avancee (Advanced administration) page of Telmat AccessLog, Git@Box and Educ@Box with software version <= 6.0 (TAL_20180415) allows Remote Code Execution (RCE) as root.September 20, 2020 CVE-2020-16148 - Telmat - Authenticated root RCE
Compact view
