MAL-2025-38788 Malicious code in wasabi-conifer-3ys5 (npm)

The package wasabi-conifer-3ys5 was found to contain malicious code...

CVE-2021-38788

The Background service in Allwinner R818 SoC Android Q SDK V1.0 is used to manage background applications. Malicious apps can use the interface provided by the service to set the number of applications allowed to run in the background to 0 and add themselves to the whitelist, so that once other...

CVE-2024-38788

creationtimestamp| type| source ---|---|--- 2024-07-22 13:38:33+00:00| seen| https://t.me/cvedetector/1431...

CVE-2024-38788

CVE-2024-38788 concerns UiPress lite (WordPress) with an SQL Injection vulnerability in versions up to 3.4.06. Root cause per Patchstack: improper neutralization of input in SQL commands. Impact per sources: potential unauthorized access via SQL injection; patch released in 3.4.07. Recommendation...

CVE-2024-38788 WordPress UiPress lite plugin <= 3.4.06 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Bởi Admin 2020 UiPress lite allows SQL Injection.This issue affects UiPress lite: from n/a through 3.4.06...

WordPress UiPress lite Plugin <= 3.4.06 is vulnerable to SQL Injection

Software UiPress lite Type Plugin Vulnerable versions = 3.4.06 Fixed in 3.4.07 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-38788 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 8c36c4e4e9c9 Credits Nguyễn Trung Kiên anhchangmutrang Required privile...

CVE-2022-38788

CVE-2022-38788 affects Nokia FastMile 5G Receiver 5G14-B, version 1.2104.00.0281. The root cause is an outdated Bluetooth pairing mechanism in the Nokia ODU, enabling a passive interception of a pairing handshake and, after offline cracking, retrieval of the PIN and LTK (long-term key). Exploitat...

CVE-2021-38788

creationtimestamp| type| source ---|---|--- 2022-01-19 18:25:58+00:00| seen| https://t.me/cibsecurity/35872...

CVE-2021-38788

The Background service in Allwinner R818 SoC Android Q SDK V1.0 is used to manage background applications. Malicious apps can use the interface provided by the service to set the number of applications allowed to run in the background to 0 and add themselves to the whitelist, so that once other...

CVE-2021-38788

The CVE-2021-38788 entry concerns the Allwinner R818 background service in the Android Q SDK v1.0. The vulnerability arises in the service that manages background processes; a malicious app can call the service interface to set the allowed number of background applications to 0 and add itself to ...