MAL-2026-2353 Malicious code in ecto-engine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a678fddfc2d44cf68ad36ea2ec4225f695540faeefd1e528f65887f3f32555ef The package ecto-engine was found to contain malicious code...

EUVD-2025-2353

Malicious code in bioql PyPI...

CVE-2014-2353

creationtimestamp| type| source ---|---|--- 2025-10-03 17:02:22+00:00| seen| Telegram/zQPOtEjj1H2iWFcwc8fO6J9bg8MZFBSRDfA9Repkj2N-CA...

CVE-2013-2353

Unspecified vulnerability in HP StoreOnce D2D Backup System 1.x before 1.2.19 and 2.x before 2.3.0 allows remote attackers to cause a denial of service via unknown vectors...

CVE-2025-2353

creationtimestamp| type| source ---|---|--- 2025-03-16 23:48:51+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7726 2025-03-17 02:00:30+00:00| seen| Telegram/YqMSErjvEsKL-oCuev1YlJDuVwLSfej0wtL6NkJ5YTzu-U 2025-03-17 02:24:43+00:00| seen| https://t.me/cvedetector/20424...

CVE-2025-2353 VAM Virtual Airlines Manager HTTP GET Parameter index.php sql injection

A vulnerability, which was classified as critical, was found in VAM Virtual Airlines Manager up to 2.6.2. Affected is an unknown function of the file /vam/index.php of the component HTTP GET Parameter Handler. The manipulation of the argument ID/registryid/planeicao leads to sql injection. It is...

CVE-2025-2353 VAM Virtual Airlines Manager HTTP GET Parameter index.php sql injection

A vulnerability, which was classified as critical, was found in VAM Virtual Airlines Manager up to 2.6.2. Affected is an unknown function of the file /vam/index.php of the component HTTP GET Parameter Handler. The manipulation of the argument ID/registryid/planeicao leads to sql injection. It is...

CGA-2353-8JQ3-C7RH

Bulletin has no description...

Oracle Linux 9 : mingw / components (ELSA-2024-2353)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2353 advisory. mingw-binutils 2.41-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora40MassRebuild 2.41-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora40MassRebuild...

RHEL 9 : mingw components (RHSA-2024:2353)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2353 advisory. MinGW Minimalist GNU for Windows is a free and open source software development environment to create Microsoft Windows applications. Security Fixes:...

CVE-2024-2353

creationtimestamp| type| source ---|---|--- 2024-03-10 09:26:23+00:00| seen| https://t.me/ctinow/204160 2024-03-10 09:26:24+00:00| seen| https://t.me/ctinow/204161 2025-02-12 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-02-12 2025-02-12 09:28:20+00:00| seen|...

CVE-2024-2353

A vulnerability, which was classified as critical, has been found in Totolink X6000R 9.4.0cu.85220230719. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component shttpd. The manipulation of the argument ip leads to os command injection. The attack may be...

CVE-2024-2353 Totolink X6000R shttpd cstecgi.cgi setDiagnosisCfg os command injection

A vulnerability, which was classified as critical, has been found in Totolink X6000R 9.4.0cu.85220230719. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component shttpd. The manipulation of the argument ip leads to os command injection. The attack may be...

CVE-2024-2353

CVE-2024-2353 affects Totolink X6000R (version 9.4.0cu.852_20230719) and targets the shttpd component’s file /cgi-bin/cstecgi.cgi, specifically the setDiagnosisCfg function. The vulnerability arises from manipulating the ip parameter, leading to an OS command injection and remote exploitation. Pu...

CVE-2011-2353

creationtimestamp| type| source ---|---|--- 2024-02-05 14:16:46+00:00| seen| https://t.me/ctinow/179207...

Amazon Linux 2 : vim (ALAS-2023-2353)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2353 advisory. Vim is an open source command line text editor. When closing a window, vim may try to access already freed window structure. Exploitation beyond crashing the application has not been shown to be...

Oracle Siebel Multiple Vulnerabilities (July 2021 CPU)

The remote Oracle Siebel install is affected by multiple unspecified vulnerabilities: - Vulnerability in the Siebel CRM product of Oracle Siebel CRM component: Siebel Core - Server Infrastructure. Supported versions that are affected are 21.5 and Prior. Difficult to exploit vulnerability allows...

CVE-2023-2353

The CHP Ads Block Detector WordPress plugin (versions up to 3.9.4) is vulnerable due to a missing capability check in chp_abd_action, allowing subscriber‑level attackers to modify or reset plugin settings. This CVE (CVE-2023-2353) and the duplicate CVE-2023-36509 are described with this root caus...

CVE-2022-2353

creationtimestamp| type| source ---|---|--- 2022-07-09 12:17:10+00:00| seen| https://t.me/cibsecurity/45850...

CVE-2022-2353 Cross-Site Request Forgery (CSRF) in microweber/microweber

Prior to microweber/microweber v1.2.20, due to improper neutralization of input, an attacker can steal tokens to perform cross-site request forgery, fetch contents from same-site and redirect a user...