CVE-2026-31815

CVE-2026-31815 affects django-unicorn prior to 0.67.0. The issue stems from missing access control checks during property updates and method calls, allowing an attacker to bypass _is_public protection and modify internal attributes (e.g., template_name) or trigger protected methods. Fixed in 0.67...

CVE-2026-31815 django-unicorn affected by component state manipulation via unvalidated attribute access

Unicorn adds modern reactive component functionality to your Django templates. Prior to 0.67.0, component state manipulation is possible in django-unicorn due to missing access control checks during property updates and method calls. An attacker can bypass the intended ispublic protection to modi...

CVE-2025-40934 XML-Sig prior to 0.68 for Perl improperly validates XML without signatures

XML-Sig versions 0.27 through 0.67 for Perl incorrectly validates XML files if signatures are omitted. An attacker can remove the signature from the XML document to make it pass the verification check. XML-Sig is a Perl module to validate signatures on XML files. An unsigned XML file should retur...

CVE-2025-40934

XML-Sig versions 0.27 through 0.67 for Perl incorrectly validates XML files if signatures are omitted. An attacker can remove the signature from the XML document to make it pass the verification check. XML-Sig is a Perl module to validate signatures on XML files. An unsigned XML file should retur...

EUVD-2016-7101

Malware in sbrugna...

CVE-2025-0606

Authorization Bypass Through User-Controlled Key vulnerability in Logo Software Inc. Logo Cloud allows Forceful Browsing, Resource Leak Exposure.This issue affects Logo Cloud: before 0.67...

CVE-2025-0606

Logo Cloud by Logo Software Inc. is affected by CVE-2025-0606 due to an authorization bypass caused by a user-controlled key. This flaw enables forceful browsing and potential resource disclosure on Logo Cloud versions before 0.67. The issue’s root cause is the improper handling of keys that gran...

CVE-2025-0606 IDOR in Logo Software's Logo Cloud

Authorization Bypass Through User-Controlled Key vulnerability in Logo Software Inc. Logo Cloud allows Forceful Browsing, Resource Leak Exposure.This issue affects Logo Cloud: before 0.67...

CVE-2025-0606 IDOR in Logo Software's Logo Cloud

Authorization Bypass Through User-Controlled Key vulnerability in Logo Software Inc. Logo Cloud allows Forceful Browsing, Resource Leak Exposure.This issue affects Logo Cloud: before 0.67...

EUVD-2025-32521

Authorization Bypass Through User-Controlled Key vulnerability in Logo Software Inc. Logo Cloud allows Forceful Browsing, Resource Leak Exposure.This issue affects Logo Cloud: before 0.67...

Logo Cloud 安全漏洞

Logo Cloud is a series of cloud-based services and products from Logo Turkey. A security vulnerability exists in Logo Cloud versions prior to 0.67, which stems from a user-controllable key leading to an authorization bypass that could lead to forced browsing and resource disclosure...

Debian DSA-4423-1 : putty - security update

Multiple vulnerabilities were found in the PuTTY SSH client, which could result in denial of service and potentially the execution of arbitrary code. In addition, in some situations random numbers could potentially be re-used. C Tenable Network Security, Inc. The descriptive text and package chec...

PuTTY < 0.67 PSCP Server Header Handling Stack Buffer Overflow

The remote host has a version of PuTTY installed that is prior to 0.67. It is, therefore, affected by a stack-based buffer overflow related to handling SCP-SINK file-size responses that could allow arbitrary code execution. C Tenable Network Security, Inc. include"compat.inc"; if description...

CVE-2016-6167

CVE-2016-6167 affects PuTTY beta 0.67 and stems from untrusted search path (DLL hijacking) vulnerabilities where local users can place UxTheme.dll or ntmarta.dll in the current working directory to execute arbitrary code or gain privileges. Publicly documented details describe exploitation via a ...

CVE-2016-6167

Multiple untrusted search path vulnerabilities in Putty beta 0.67 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 UxTheme.dll or 2 ntmarta.dll file in the current working directory...

PuTTY DoS Vulnerability (Apr 2016) - Windows

PuTTY is prone to denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:putty:putty"; ifdescriptio...

MGASA-2016-0118 Updated filezilla packages fix security vulnerability

Many versions of PSCP in PuTTY prior to 0.67 have a stack corruption vulnerability in their treatment of the 'sink' direction i.e. downloading from server to client of the old-style SCP protocol. In order for this vulnerability to be exploited, the user must connect to a malicious server and...

Updated putty packages fix CVE-2016-2563

Updated putty package fixes security vulnerability: Many versions of PSCP in PuTTY prior to 0.67 have a stack corruption vulnerability in their treatment of the 'sink' direction i.e. downloading from server to client of the old-style SCP protocol. In order for this vulnerability to be exploited,...

Debian Security Advisory DSA 152-1 (l2tpd)

The remote host is missing an update to l2tpd announced via advisory DSA 152-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Clam Antivirus DoS vulnerability

Background Clam AntiVirus is a GPLed anti-virus toolkit, designed for integration with mail servers to perform attachment scanning. Clam AV also provides a command line scanner and a tool for fetching updates of the virus database. Description Oliver Eikemeier of Fillmore Labs discovered the...