CVE-2025-58160 affecting package rpm-ostree for versions less than 2022.1-8

CVE-2025-58160 affecting package rpm-ostree for versions less than 2022.1-8. A patched version of the package is available...

EUVD-2023-29727

Malicious code in bioql PyPI...

EUVD-2022-33107

Malicious code in bioql PyPI...

EUVD-2022-33106

Malicious code in bioql PyPI...

CVE-2022-2016

Cross-site Scripting XSS - Reflected in GitHub repository neorazorx/facturascripts prior to 2022.1...

CVE-2024-28172

Uncontrolled search path for some IntelR Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (February 2024)

The Microsoft Team Foundation Server or Azure DevOps install is missing security updates. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number...

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. The following produc...

PT-2024-1755 · Adobe · Framemaker Publishing Server

Name of the Vulnerable Software and Affected Versions: Adobe FrameMaker Publishing Server versions 2022.1 and earlier Description: The issue is related to an Improper Authentication vulnerability in the Adobe FrameMaker Publishing Server. This vulnerability could allow a remote attacker to bypass...

CVE-2023-25839

There is SQL injection vulnerability in Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 that may allow a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is...

Sql injection

There is SQL injection vulnerability in Esri ArcGIS Insights 2022.1 for ArcGIS Enterprise and that may allow a remote, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is complex a...

Sql injection

There is SQL injection vulnerability in Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 that may allow a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is...

CVE-2023-25839 BUG-000157278 – ArcGIS Insights has a security vulnerability - desktop

There is SQL injection vulnerability in Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 that may allow a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is...

PT-2023-20345 · Esri · Esri Arcgis Insights Desktop

Name of the Vulnerable Software and Affected Versions: Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 Description: The issue allows a local, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input...

PT-2023-20344 · Esri · Esri Arcgis Insights

Name of the Vulnerable Software and Affected Versions: Esri ArcGIS Insights version 2022.1 for ArcGIS Enterprise Description: The issue allows a remote, authorized attacker to execute arbitrary SQL commands against the back-end database due to a SQL injection vulnerability. The effort required to...

AZL-27654 CVE-2022-47085 affecting package rpm-ostree for versions less than 2022.1-5

An issue was discovered in ostree before 2022.7 allows attackers to cause a denial of service or other unspecified impacts via the printpanic function in repocheckoutfilter.rs...

AZL-35219 CVE-2022-47085 affecting package rpm-ostree for versions less than 2022.1-7

An issue was discovered in ostree before 2022.7 allows attackers to cause a denial of service or other unspecified impacts via the printpanic function in repocheckoutfilter.rs...

Deserialization of untrusted data

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OPC Labs QuickOPC 2022.1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

OPC Labs QuickOPC 代码问题漏洞

OPC Labs QuickOPC is an OPC toolkit from OPC Labs, Inc. A code issue vulnerability exists in OPC Labs QuickOPC version 2022.1 that stems from a lack of proper validation of user-supplied data, which could lead to deserialization of untrusted data and could be exploited by an attacker to execute...

CVE-2022-2561

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OPC Labs QuickOPC 2022.1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...