βΌ CVE-2023-39526 βΌ
π Read
via "National Vulnerability Database".
PrestaShop is an open source e-commerce web application. Versions prior to 1.7.8.10, 8.0.5, and 8.1.1 are vulnerable to remote code execution through SQL injection and arbitrary file write in the back office. Versions 1.7.8.10, 8.0.5, and 8.1.1 contain a patch. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39530 βΌ
π Read
via "National Vulnerability Database".
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete files from the server via the CustomerMessage API. Version 8.1.1 contains a patch for this issue. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39520 βΌ
π Read
via "National Vulnerability Database".
Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the `repair` function. The problem occurs as the repair function of the MSI is spawning an SYSTEM Powershell without the `-NoProfile` parameter. Therefore the profile of the user starting the repair will be loaded. Version 1.9.3 contains a fix for this issue. Adding a `-NoProfile` to the powershell is a possible workaround.π Read
via "National Vulnerability Database".
βΌ CVE-2023-4201 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in SourceCodester Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file ex_catagory_data.php. The manipulation of the argument columns[1][data] leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-236291.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39527 βΌ
π Read
via "National Vulnerability Database".
PrestaShop is an open source e-commerce web application. Versions prior to 1.7.8.10, 8.0.5, and 8.1.1 are vulnerable to cross-site scripting through the `isCleanHTML` method. Versions 1.7.8.10, 8.0.5, and 8.1.1 contain a patch. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39523 βΌ
π Read
via "National Vulnerability Database".
ScanCode.io is a server to script and automate software composition analysis with ScanPipe pipelines. Prior to version 32.5.1, the software has a possible command injection vulnerability in the docker fetch process as it allows to append malicious commands in the `docker_reference` parameter.In the function `scanpipe/pipes/fetch.py:fetch_docker_image` the parameter `docker_reference` is user controllable. The `docker_reference` variable is then passed to the vulnerable function `get_docker_image_platform`. However, the `get_docker_image_plaform` function constructs a shell command with the passed `docker_reference`. The `pipes.run_command` then executes the shell command without any prior sanitization, making the function vulnerable to command injections. A malicious user who is able to create or add inputs to a project can inject commands. Although the command injections are blind and the user will not receive direct feedback without logs, it is still possible to cause damage to the server/container. The vulnerability appears for example if a malicious user adds a semicolon after the input of `docker://;`, it would allow appending malicious commands.Version 32.5.1 contains a patch for this issue. The `docker_reference` input should be sanitized to avoid command injections and, as a workaround, one may avoid creating commands with user controlled input directly.π Read
via "National Vulnerability Database".
βΌ CVE-2023-38704 βΌ
π Read
via "National Vulnerability Database".
`import-in-the-middle` is a module loading interceptor specifically for ESM modules. Prior to version 1.4.2, the `import-in-the-middle` loader works by generating a wrapper module on the fly. The wrapper uses the module specifier to load the original module and add some wrapping code. It allows for remote code execution in cases where an application passes user-supplied input directly to an `import()` function. This vulnerability has been patched in `import-in-the-middle` version 1.4.2. Some workarounds are available. Do not pass any user-supplied input to `import()`. Instead, verify it against a set of allowed values. If using `import-in-the-middle` and support for EcmaScript Modules is not needed, ensure that certain options are set, either via command-line or the `NODE_OPTIONS` environment variable.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39529 βΌ
π Read
via "National Vulnerability Database".
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete a file from the server by using the Attachments controller and the Attachments API. Version 8.1.1 contains a patch for this issue. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39528 βΌ
π Read
via "National Vulnerability Database".
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, the `displayAjaxEmailHTML` method can be used to read any file on the server, potentially even outside of the project if the server is not correctly configured. Version 8.1.1 contains a patch for this issue. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39524 βΌ
π Read
via "National Vulnerability Database".
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, SQL injection possible in the product search field, in BO's product page. Version 8.1.1 contains a patch for this issue. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39439 βΌ
π Read
via "National Vulnerability Database".
SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.π Read
via "National Vulnerability Database".
βΌ CVE-2023-37492 βΌ
π Read
via "National Vulnerability Database".
SAP NetWeaver Application Server ABAP and ABAP Platform - versions SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731, SAP_BASIS 740, SAP_BASIS 750, SAP_BASIS 752, SAP_BASIS 753, SAP_BASIS 754, SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757, SAP_BASIS 758, SAP_BASIS 793, SAP_BASIS 804, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This could allow an attacker to read sensitive information which can be used in a subsequent serious attack.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33993 βΌ
π Read
via "National Vulnerability Database".
B1i module of SAP Business One - version 10.0, application allows an authenticated user with deep knowledge to send crafted queries over the network to read or modify the SQL data. On successful exploitation, the attacker can cause high impact on confidentiality, integrity and availability of the application.π Read
via "National Vulnerability Database".
βΌ CVE-2023-36923 βΌ
π Read
via "National Vulnerability Database".
SAP SQLA for PowerDesigner 17 bundled with SAP PowerDesigner 16.7 SP06 PL03,Γ allows an attacker with local access to the system, to place a malicious library, that can be executed by the application. An attacker could thereby control the behavior of the application.π Read
via "National Vulnerability Database".
βΌ CVE-2023-37487 βΌ
π Read
via "National Vulnerability Database".
SAP Business One (Service Layer) - version 10.0, allows an authenticated attacker with deep knowledge perform certain operation to access unintended data over the network which could lead to high impact on confidentiality with no impact on integrity and availability of the applicationπ Read
via "National Vulnerability Database".
βΌ CVE-2023-39440 βΌ
π Read
via "National Vulnerability Database".
In SAP BusinessObjects Business Intelligence - version 420, If a user logs in to a particular program, under certain specific conditions memory might not be cleared up properly, due to which attacker might be able to get access to user credentials. For a successful attack, the attacker needs to have local access to the system. There is no impact on availability and integrity.π Read
via "National Vulnerability Database".
βΌ CVE-2023-37486 βΌ
π Read
via "National Vulnerability Database".
Under certain conditionsΓ SAP CommerceΓ (OCC API) - versions HY_COM 2105, HY_COM 2205, COM_CLOUD 2211, endpoints allow an attacker to access information which would otherwise be restricted. On successful exploitation there could be a high impact on confidentiality with no impact on integrity and availability of the application.π Read
via "National Vulnerability Database".
βΌ CVE-2023-37483 βΌ
π Read
via "National Vulnerability Database".
SAP PowerDesigner - version 16.7, has improper access control which might allow an unauthenticated attacker to run arbitrary queries against the back-end database via Proxy.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39436 βΌ
π Read
via "National Vulnerability Database".
SAP Supplier Relationship Management -versions 600, 602, 603, 604, 605, 606, 616, 617, allows an unauthorized attacker to discover information relating toΓ SRM within Vendor Master Data for Business Partners replication functionality.This information could be used to allow the attacker to specialize their attacks againstΓ SRM.π Read
via "National Vulnerability Database".
βΌ CVE-2023-37491 βΌ
π Read
via "National Vulnerability Database".
The ACL (AccessΓ ControlΓ List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, RNL64UC 7.22, RNL64UC 7.22EXT, RNL64UC 7.53, KRNL64NUC 7.22, KRNL64NUC 7.22EXT, can be bypassed in certain conditions, which may enable an authenticated malicious user to enter the network of the SAP systems served by the attacked SAP Message server. This may lead to unauthorized read and write of data as well as rendering the system unavailable.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39437 βΌ
π Read
via "National Vulnerability Database".
SAP business One allows - version 10.0, allows an attacker to insert malicious code into the content of a web page or application and gets it delivered to the client, resulting to Cross-site scripting. This could lead to harmful action affecting the Confidentiality, Integrity and Availability of the application.π Read
via "National Vulnerability Database".