EUVD-2021-31833

Malicious code in bioql PyPI...

CVE-2025-7399

The Betheme theme for WordPress is vulnerable to Stored Cross-Site Scripting via an Elementor display setting in all versions up to, and including, 28.1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access...

CVE-2021-45036 Velneo vClient improper authentication

Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...

PT-2022-12298 · Velneo · Velneo Vclient

Name of the Vulnerable Software and Affected Versions: Velneo vClient version 28.1.3 Description: The issue allows an attacker with knowledge of the victim's username and hashed password to spoof the victim's id against the server. Recommendations: For Velneo vClient version 28.1.3, consider...

Velneo vClient 授权问题漏洞

Velneo vClient is a complete enterprise application development platform from Velneo. A security vulnerability exists in Velneo vClient version 28.1.3 that stems from a vulnerability that could allow an attacker who knows the victim's username and hashed password to spoof the victim's ID on the...

Design/Logic Flaw

Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials...

Velneo vClient 信任管理问题漏洞

Velneo vClient is a complete enterprise application development platform from Velneo. A certificate validation error vulnerability exists in Velneo vClient version 28.1.3, which stems from a default failure to properly check the authenticity of certificates, and can be exploited by an attacker to...