Amazon Linux 2023 : python3.12-pip, python3.12-pip-wheel (ALAS2023-2026-1530)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1530 advisory. When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation...

CVE-2026-1530

A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle MITM attack due to disabled certificate validation. This enables the attacker to intercept and potentially alter sensitive communications between Satellite and OpenShift, resulting in...

MiracleLinux 8 : nginx:1.16 (AXSA:2021-1530:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1530:01 advisory. nginx: HTTP request smuggling in configurations with URL redirect used as errorpage CVE-2019-20372 Tenable has extracted the preceding description block...

MiracleLinux 3 : firefox-24.5.0-1.0.1.AXS3 (AXSA:2014-327:02)

The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2014-327:02 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

MiracleLinux 4 : firefox-24.5.0-1.0.1.AXS4 (AXSA:2014-296:03)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2014-296:03 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

MiracleLinux 4 : krb5-1.9-22.AXS4.1 (AXSA:2012-29:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-29:01 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of...

CVE-2011-0514

The RDS service rds.exe in HP Data Protector Manager 6.11 allows remote attackers to cause a denial of service crash via a packet with a large data size to TCP port 1530...

EUVD-2023-1530

Malicious code in bioql PyPI...

CVE-2025-1530

creationtimestamp| type| source ---|---|--- 2025-03-15 11:44:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7679 2025-03-15 15:06:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkgfmt2xen26 2025-03-15 15:17:13+00:00| seen| https://t.me/cvedetector/20369...

HP Data Protector Manager RDS Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Data Protector Manager RDS DOS', 'Description' = %q This module causes a remote DOS on HP Data Protector's RDS service. By sending a malformed...

Elber Wayber Analog/Digital Audio STL 4.00 - Device Config Disclosure

Elber Wayber Analog/Digital Audio STL 4.00 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected version: Version 3.0.0 Revision 1553 Firmware Ver. 4.00 Rev. 1501 Version 3.0.0 Revision 1542 Firmware Ver. 4.00 Rev. 1516 Version 3.0.0 Revision 1530 Firmware Ver. 4.00...

Elber Wayber Analog/Digital Audio STL 4.00 Insecure Direct Object Reference Vulnerability

Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability. Elber Wayber Analog/Digital Audio STL 4.00 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected...

EulerOS Virtualization 2.10.0 : libXpm (EulerOS-SA-2024-1530)

According to the versions of the libXpm package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user to...

Oracle Linux 9 : expat (ELSA-2024-1530)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1530 advisory. - CVE-2023-52425: Fix parsing of large tokens - CVE-2024-28757: Reject direct parameter entity recursion Tenable has extracted the preceding descriptio...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0082-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1530

A vulnerability, which was classified as critical, has been found in ECshop 4.1.8. Affected by this issue is some unknown functionality of the file /admin/viewsendlist.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public a...

CVE-2024-1530 ECshop view_sendlist.php sql injection

A vulnerability, which was classified as critical, has been found in ECshop 4.1.8. Affected by this issue is some unknown functionality of the file /admin/viewsendlist.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public a...

CVE-2024-1530

CVE-2024-1530 affects ECshop 4.1.8. The vulnerability is in an unknown functionality of the file /admin/view_sendlist.php, where manipulation leads to a SQL injection. The issue can be exploited remotely, and multiple sources note that the exploit has been disclosed publicly. Remediation details ...

CVE-2024-1530 ECshop view_sendlist.php sql injection

A vulnerability, which was classified as critical, has been found in ECshop 4.1.8. Affected by this issue is some unknown functionality of the file /admin/viewsendlist.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public a...

Oracle Linux 6 : kernel (ELSA-2011-1530)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1530 advisory. - kernel KEYS: Fix a NULL pointer deref in the user-defined key type David Howells 751190 CVE-2011-4110 - netdrv benet: remove bogus 'unlikely' on vlan...