MapServer before 7.0.8, 7.1.x and 7.2.x before 7.2.3, 7.3.x and 7.4.x before 7.4.5, and 7.5.x and 7.6.x before 7.6.3 does not properly enforce the MS_MAP_NO_PATH and MS_MAP_PATTERN restrictions that are intended to control the locations from which a mapfile may be loaded (with MapServer CGI). A successful attack will result in denial-of-service of the antivirus engine. The vulnerability can be exploited remotely by an attacker. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.Ī vulnerability affecting F-Secure antivirus engine was discovered whereby scanning MS outlook. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. From log4j 2.15.0, this behavior has been disabled by default. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. There is a sql injection vulnerability in /ms/cms/content/list.doĪpache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. This flaw affects kernel versions prior to 5.14 rc1.Īn arbitrary file upload vulnerability in the component /ms/file/uploadTemplate.do of MCMS v5.2.4 allows attackers to execute arbitrary code.Ī problem was found in ming-soft MCMS v5.1. In this flaw, a local attacker with a user privilege may impact system Confidentiality. MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via /ms/mdiy/model/importJson.do.Ī use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host/rtsx_usb_ms.c in memstick in the Linux kernel. MCMS v5.2.4 was discovered to contain an arbitrary file upload vulnerability via the component /ms/template/writeFileContent.do. As a workaround, avoid opening csv files generated by `gradio` with Excel or similar spreadsheet programs. The problem has been patched as of `2.8.11`, which escapes the saved csv with single quotes.
If a program like MS Excel opens such a file, then it automatically runs these commands, which could lead to arbitrary commands running on the user's computer.
This can allow a user to save arbitrary text into the CSV file, such as commands. The `gradio` library has a flagging functionality which saves input/output data into a CSV file on the developer's computer. Prior to version 2.8.11, `gradio` suffers from Improper Neutralization of Formula Elements in a CSV File. `gradio` is an open source framework for building interactive machine learning models and demos.
0 kommentar(er)
