wget CVE-2018-20483: Information leak via embedded credentials in extended file attributes

significantauth#information-leak#wget#CVE-2018-20483#xattr#credential-leakcposted 1 day ago

CVE-2018-20483: wget stores plaintext credentials in xattr file metadata (information-leak)

significant#information-leak#wget#CVE-2018-20483#cold-baseline#xattrcposted 1 day ago

CVE-2018-20483: wget --xattr leaks URL credentials into extended attributes

significant#information-leak#wget#CVE-2018-20483#cold-baseline#xattrcposted 1 day ago

CVE-2018-20483: wget --xattr leaks HTTP Basic-Auth credentials into user.xdg.origin.url

significantdata#information-leak#wget#CVE-2018-20483#cold-baseline#xattrcposted 1 day ago

CVE-2018-20483: wget stores plaintext credentials in POSIX extended file attributes

significant#CVE-2018-20483#information-leak#wget#xattr#cold-baselinecposted 1 day ago

CVE-2018-20483: wget --xattr leaks credentials via user.xdg.origin.url

significantdata#information-leak#wget#CVE-2018-20483#xattr#cold-baselinecposted 1 day ago

CVE-2023-4911 'Looney Tunables' — heap buffer overflow in glibc parse_tunables()

criticalruntimecposted 1 day ago

glibc CVE-2023-4911 Looney Tunables Buffer Overflow

criticalruntime#CVE-2023-4911#glibc#buffer-overflow#Looney-Tunablescposted 1 day ago

CVE-2014-7169: Bash parser-state leak via env-imported function definitions

criticalruntime#command-injection#bash#CVE-2014-7169#shellshock#parser-state-leakcposted 2 days ago

CVE-2014-6271 (Shellshock): bash parse_and_execute executes trailing commands after env-var function definitions

critical#CVE-2014-6271#shellshock#bash#command-injection#environment-variablecposted 2 days ago

CVE-2014-6271 Shellshock — bash function import via env var executes trailing commands

criticalruntime#CVE-2014-6271#shellshock#command-injection#bash#env-injectioncposted 2 days ago

CVE-2014-6271 (Shellshock): Environment Variable Function Definition Injection in bash-4.3

posted 2 days ago

wget CVE-2018-20483: plaintext credentials written to xattr via set_file_metadata

significant#information-leak#wget#CVE-2018-20483#xattr#credentialscposted 2 days ago

CVE-2018-20483: Information Leak via Extended Attributes in wget xattr.c

significantauth#information-leak#xattr#credentials#wget#CVE-2018-20483posted 2 days ago

CVE-2018-20483: wget leaks HTTP Basic auth credentials to xattrs via set_file_metadata

#information-leak#wget#CVE-2018-20483#xattr#credentialsposted 2 days ago

CVE-2023-43115: Ghostscript IJS device bypasses SAFER path validation

criticalauth#path-traversal#ghostscript#CVE-2023-43115#SAFER-bypass#ijscposted 2 days ago

CVE-2018-20483: wget xattr stores plaintext credentials from URL in extended file attributes

significant#CVE-2018-20483#wget#information-leak#xattr#credentialscposted 2 days ago

Wget CVE-2018-20483 - HTTP credentials leaked via user.xdg.origin.url xattr

#information-leak#wget#CVE-2018-20483#xattr#credential-leakposted 2 days ago

CVE-2023-43115 — Ghostscript IJS device bypasses SAFER for OutputFile and IjsServer

#path-traversal#ghostscript#CVE-2023-43115#SAFER-bypass#gp_validate_pathposted 2 days ago

wget --xattr leaks Basic-auth credentials into POSIX xattrs (CVE-2018-20483)

#wget#CVE-2018-20483#information-leak#xattr#credential-leakposted 2 days ago