📦 Total.js

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of total.js framework. Attackers can exploit the U.set() and U.get() utility functions to in...

This vulnerability in total.js framework allows remote attackers to execute arbitrary code on affected systems by exploiting improper input validation in the 'set' function. It affects all application...

CVE-2024-48655 is a server-side JavaScript code injection vulnerability in Total.js CMS v1.0 that allows remote attackers to execute arbitrary code via the func.js file. This enables complete system c...

CVE-2021-32831 is a code injection vulnerability in the Total.js framework for Node.js. When the utils.set function is called with user-controlled values, attackers can execute arbitrary code on affec...

This vulnerability allows remote command injection in total.js framework versions before 3.4.7. Attackers can execute arbitrary commands on the server by exploiting insufficient input sanitization in ...