GitLab CE/EE - Hard-Coded Credentials

GitLab CE/EE contains a hard-coded credentials vulnerability. A hardcoded password was set for accounts registered using an OmniAuth provider e.g. OAuth, LDAP, SAML, allowing attackers to potentially take over accounts. This template attempts to passively identify vulnerable versions of GitLab...

PT-2026-3720

Name of the Vulnerable Software and Affected Versions Oracle FLEXCUBE Investor Servicing versions 14.5.0.15.0 through 14.8.0.1.0 Description A security issue exists within the Security Management System component of the Oracle FLEXCUBE Investor Servicing product. A low-privileged attacker with...

CVE-2022-0371

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 before 14.5.4, all versions starting from 14.6 before 14.6.4, all versions starting from 14.7 before 14.7.1. GitLab search may allow authenticated users to search other users by their respective private emails...

EUVD-2021-17715

Malware in sbrugna...

EUVD-2021-17721

Malware in sbrugna...

EUVD-2021-17716

Malware in sbrugna...

EUVD-2021-17713

Malware in sbrugna...

EUVD-2021-17691

Malware in sbrugna...

EUVD-2021-17703

Malware in sbrugna...

EUVD-2021-17719

Malware in sbrugna...

EUVD-2021-17692

Malware in sbrugna...

EUVD-2021-17709

Malware in sbrugna...

EUVD-2021-17788

Malware in sbrugna...

EUVD-2021-17690

Malware in sbrugna...

EUVD-2021-17686

Malware in sbrugna...

EUVD-2021-17685

Malware in sbrugna...

EUVD-2021-17687

Malware in sbrugna...

EUVD-2021-17708

Malware in sbrugna...

EUVD-2024-28460

Malicious code in bioql PyPI...

webkitgtk: Insufficient checks leading to arbitrary code execution

This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution...