PT-2026-32523

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.13-44 ImageMagick versions prior to 7.1.2-19 Description When Magick parses an XML file, a single zero byte may be written out of bounds. Recommendations Update to version 6.9.13-44. Update to version 7.1.2-19...

EUVD-2025-200877

Malicious code in elf-stats-jubilant-chimney-189 npm...

MAL-2025-192075 Malicious code in elf-stats-jubilant-chimney-189 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11bde67b26a68b03c89c4924cd8701caa7476fe6f8b812d7c0c9a9e5e42fe3a8 The package elf-stats-jubilant-chimney-189 was found to contain malicious code...

EUVD-2021-18610

Malware in sbrugna...

Malicious code in tangerine-189-project (npm)

The package tangerine-189-project was found to contain malicious code...

MAL-2025-34409 Malicious code in tangerine-189-project (npm)

The package tangerine-189-project was found to contain malicious code...

Amazon Linux 2023 : microcode_ctl (ALAS2023-2023-189)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-189 advisory. 2024-05-09: CVE-2022-33196 was added to this advisory. Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a...

CVE-2023-30399

Insecure permissions in the settings page of GARO Wallbox GLB/GTB/GTC before v189 allows attackers to redirect users to a crafted update package link via a man-in-the-middle attack...

Fixed CVE-2022-31625 in php

ELS-189: Fix for Harden PHP - CVE-2022-31625: Fix freeing of uninitialized memory leading to RCE...

PT-2022-18284 · Cloudbees +1 · Jenkins Cloudbees Aws Credentials Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins CloudBees AWS Credentials Plugin versions 189.v3551d5642995 and earlier Description: A cross-site request forgery issue allows attackers with Overall/Read permission to connect to an AWS service using an attacker-specified token...

Stored XSS Vulnerability in 189 Mailbox of China Telecom Group Corporation Ltd.

189 Mailbox is a new type of work and business mailbox for all Internet users. A stored XSS vulnerability exists in China Telecom Group Corporation's 189 mailbox, which can be exploited by attackers to obtain sensitive information such as user cookies...

CVE-2021-31726

Akuvox C315 115.116.2613 allows remote command Injection via the cfgdserver service. The attack vector is sending a payload to port 189 default root 0.0.0.0...

CVE-2021-31726

Akuvox C315 115.116.2613 allows remote command Injection via the cfgdserver service. The attack vector is sending a payload to port 189 default root 0.0.0.0...

Command injection

Akuvox C315 115.116.2613 allows remote command Injection via the cfgdserver service. The attack vector is sending a payload to port 189 default root 0.0.0.0...

CVE-2021-31726

Akuvox C315 115.116.2613 allows remote command Injection via the cfgdserver service. The attack vector is sending a payload to port 189 default root 0.0.0.0...

AKUVOX C315 命令注入漏洞

The Akuvox C315 is a 7-inch Android indoor monitor. A remote command injection vulnerability exists in the cfgdserver service in Akuvox C315 version 115.116.2613. An attacker can exploit this vulnerability by sending a payload to port 189 to inject and execute commands...

XSS Vulnerability in Mailbox 189

189 mailbox is a new type of mailbox for all Internet users, with 380 million registered users. It is ranked among the top three mailboxes in the domestic mailbox industry, only after NetEase and QQ mailboxes. There is an XSS vulnerability in 189 mailbox, which can be exploited by attackers to...

Solaris 10 (sparc) : 120272-31

SunOS 5.10: SMA patch. Date this patch was last updated by Sun : Jun/30/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Solaris 10 (sparc) : 119059-72

X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Mar/09/17 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

CVE-2017-12731

A SQL Injection issue was discovered in OPW Fuel Management Systems SiteSentinel Integra 100, SiteSentinel Integra 500, and SiteSentinel iSite ATG consoles with the following software versions: older than V175, V175-V189, V191-V195, and V16Q3.1. The application is vulnerable to injection of...