362 matches found
EUVD-2020-16397
Malware in sbrugna...
EUVD-2025-30603
Malicious code in bioql PyPI...
EUVD-2022-26710
Malicious code in bioql PyPI...
EUVD-2022-26708
Malicious code in bioql PyPI...
EUVD-2022-26536
Malicious code in bioql PyPI...
EUVD-2021-31193
Malicious code in bioql PyPI...
EUVD-2023-40638
Malicious code in bioql PyPI...
EUVD-2025-17480
Malicious code in bioql PyPI...
EUVD-2022-26558
Malicious code in bioql PyPI...
EUVD-2022-26709
Malicious code in bioql PyPI...
CVE-2025-59538 Argo CD is Vulnerable to Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. For versions 2.9.0-rc1 through 2.14.19, 3.0.0-rc1 through 3.2.0-rc1, 3.1.6 and 3.0.17, when the webhook.azuredevops.username and webhook.azuredevops.password are not set in the default configuration, the /api/webhook endpoi...
CVE-2025-58004
Missing Authorization vulnerability in SmartDataSoft DriCub dricub-driving-school allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DriCub: from n/a through = 2.9...
WordPress DriCub Theme <= 2.9 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Bonds in WordPress Theme DriCub versions = 2.9...
CVE-2025-58004 WordPress DriCub Theme <= 2.9 - Broken Access Control Vulnerability
Missing Authorization vulnerability in SmartDataSoft DriCub dricub-driving-school allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DriCub: from n/a through = 2.9...
CVE-2025-58005 WordPress DriCub Theme <= 2.9 - Server Side Request Forgery (SSRF) Vulnerability
Server-Side Request Forgery SSRF vulnerability in SmartDataSoft DriCub dricub-driving-school allows Server Side Request Forgery.This issue affects DriCub: from n/a through = 2.9...
BIT-HAPROXY-2024-45506
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding h2send loop under a certain set of conditions, as exploited in the wild in 2024...
CVE-2025-58631
CVE-2025-58631 is a DOM-based XSS in the WordPress IssueM plugin up to version 2.9.0, caused by improper neutralization of input during web page generation. Affected software: IssueM (ZEEN101) plugin for WordPress; vulnerability is triggered via user-supplied input that is not properly sanitized ...
WordPress LWSCache plugin <= 2.8.5 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Activation via lwscache_activatePlugin Function vulnerability
Missing Authorization to Authenticated Subscriber+ Limited Plugin Activation via lwscacheactivatePlugin Function vulnerability discovered by wesley wcraft in WordPress Plugin LWSCache versions = 2.8.5...
Linux Distros Unpatched Vulnerability : CVE-2016-4571
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mxmlwritenode function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service stack consumption via...
CVE-2025-8508 Portabilis i-Educar educar_avaliacao_desempenho_cad.php cross site scripting
A vulnerability was found in Portabilis i-Educar 2.9. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /intranet/educaravaliacaodesempenhocad.php. The manipulation of the argument tituloavaliacao/descricao leads to cross site scripting. T...