1zlab-emp-ide (=0.0.3), 1zlab-homepage (>=0.0.2 <=0.0.3) +11108 more potentially affected by CVE-2026-35193 via django (>=6.0.0 <=6.0.5)

django PYPI version =6.0.0, =0.0.2, =2.2.0, =0.1.0, =0.1.0.1, =0.1.1, =0.2.0, =0.0.4a0, =0.0.7, =0.1.10 and more Source cves: CVE-2026-35193 Source advisory: SNYK:PYTHON-DJANGO-17151780...

11x-wagtail-blog (>=0.0.0 <=0.2.0), aa-altcorp (>=0.1.2b0 <=1.1.1) +1647 more potentially affected by CVE-2026-35193 via django (>=5.0.0 <=5.2.14)

django PYPI version =5.0.0, =0.0.0, =0.1.2b0, =0.0.1a1, =0.1.1, =3.1.0b1, =1.0.3, =0.0.1a2, =0.1.0, =0.2.0, =1.0.0, =1.1.0b3, =0.1.0b1, =0.11.1 and more Source cves: CVE-2026-35193 Source advisory: SNYK:PYTHON-DJANGO-17151780...

CVE-2026-35193

creationtimestamp| type| source ---|---|--- 2026-06-03 15:44:14+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnfgymbjrd2e...

aa-altcorp (>=0.1.2b0 <=1.1.1), aa-alumni (>=0.0.1a1 <=1.0.1) +1421 more potentially affected by CVE-2026-35193 via django (>=5.2.0 <=5.2.14)

django PYPI version =5.2.0, =0.1.2b0, =0.0.1a1, =0.1.1, =3.1.0b1, =1.0.3, =0.0.1a2, =0.1.0, =0.2.0, =1.0.0, =1.1.0b3, =0.1.0b1, =0.1.0, =1.1.0 and more Source cves: CVE-2026-35193 Source advisory: OSV:PYSEC-2026-197...

CVE-2026-35193 Potential exposure of private data via missing Vary: Authorization in UpdateCacheMiddleware

An issue was discovered in Django 5.2 before 5.2.15 and 6.0 before 6.0.6. django.middleware.cache.UpdateCacheMiddleware in Django does not add Authorization to the Vary response header for requests bearing that header without Cache-Control: public, which allows remote attackers to read private...

MAL-2025-35193 Malicious code in test-mlw2-demit-scout (npm)

The package test-mlw2-demit-scout was found to contain malicious code...

CVE-2022-35193

TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php...

CVE-2023-35193

creationtimestamp| type| source ---|---|--- 2023-10-11 20:18:00+00:00| seen| https://t.me/cibsecurity/72129...

CVE-2023-35193

CVE-2023-35193 affects Peplink Surf SOHO HW1 v6.3.5 (in QEMU). Talos reports an OS command injection in api.cgi (cmd.mvpn.x509.write) where an attacker-authenticated user can craft HTTP POST parameters (cert, key, pw) to trigger root-level commands via system(). The vulnerable code builds and exe...

peplink Surf SOHO HW1 api.cgi cmd.mvpn.x509.write OS command injection vulnerability

Talos Vulnerability Report TALOS-2023-1782 peplink Surf SOHO HW1 api.cgi cmd.mvpn.x509.write OS command injection vulnerability October 11, 2023 CVE Number CVE-2023-35194,CVE-2023-35193 SUMMARY An OS command injection vulnerability exists in the api.cgi cmd.mvpn.x509.write functionality of peplin...

CVE-2022-35193

creationtimestamp| type| source ---|---|--- 2022-09-16 20:28:50+00:00| seen| https://t.me/cibsecurity/49925...

CVE-2022-35193

CVE-2022-35193 affects TestLink v1.9.20 with a SQL injection vulnerability in /lib/execute/execNavigator.php. The issue stems from improper input handling in the navigation execution endpoint, enabling an attacker to manipulate backend SQL queries. According to the connected documents, this vulne...

CVE-2021-35193

creationtimestamp| type| source ---|---|--- 2021-07-30 22:15:26+00:00| seen| https://t.me/cibsecurity/26635...

CVE-2021-35193

CVE-2021-35193 affects Patterson Eaglesoft 18–21 via the Patterson Application Service. The vulnerability arises because the service accepts the same certificate authentication across different customer installations with the same software version, enabling remote access to SQL database credentia...

CVE-2020-35193

creationtimestamp| type| source ---|---|--- 2020-12-16 02:45:55+00:00| seen| https://t.me/cibsecurity/20897...

CVE-2020-35193

The CVE-2020-35193 entry concerns the official SonarQube Docker images prior to Alpine (Alpine-specific). The root cause is a blank root password in these images, which may allow a remote attacker to obtain root access when deploying the SonarQube container. NVD metrics indicate a high-severity i...

CVE-2014-9004

creationtimestamp| type| source ---|---|--- 2014-11-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/35193...

Apache Tomcat Java AJP连接器无效头拒绝服务漏洞

BUGTRAQ ID: 35193 CVECAN ID: CVE-2009-0033 Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。 如果Tomcat通过Java AJP连接器接收到了带有无效头的请求，就会关闭AJP连接器而不是返回错误。在这个连接器是modjk负载均衡worker成员的情况下，这个成员就会进入出错状态，在大约一分钟的时间内无法使用。 Apache Group Tomcat 6.0.x Apache Group Tomcat 5.5.x Apache Group Tomcat 4.1.x 厂商补丁： Apache Group -----------...