EUVD-2025-39265

Malicious code in vera-dradag54-sluey npm...

MAL-2025-39265 Malicious code in wifesex (npm)

The package wifesex was found to contain malicious code...

CVE-2023-39265

Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is usin...

Unspecified vulnerability in Linux kernel (CNVD-2024-39265)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from the presence of a divide-by-zero problem. No details of the vulnerability are provided at this time...

Alert: Apache Superset Vulnerabilities Expose Servers to Remote Code Execution Attacks

Patches have been released to address two new security vulnerabilities in Apache Superset that could be exploited by an attacker to gain remote code execution on affected systems. The update version 2.1.1 plugs CVE-2023-39265 and CVE-2023-37941, which make it possible to conduct nefarious actions...

CVE-2023-39265

creationtimestamp| type| source ---|---|--- 2023-09-07 11:01:26+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8984 2023-09-07 13:31:34+00:00| seen| https://t.me/thehackernews/3838 2023-09-07 13:42:21+00:00| published-proof-of-concept|...

CVE-2023-39265

Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is usin...

CVE-2023-39265

Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is usin...

CVE-2023-39265 Apache Superset: Possible Unauthorized Registration of SQLite Database Connections

Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is usin...

CVE-2023-39265

CVE-2023-39265 describes that Apache Superset can register SQLite connections incorrectly when using alternative driver names such as sqlite+pysqlite or via database imports, potentially causing unexpected file creation on the webserver. If Superset uses SQLite for its metadata (not advised for p...

CVE-2023-39265 Apache Superset: Possible Unauthorized Registration of SQLite Database Connections

Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is usin...

MyBB < 1.8.31 RCE Vulnerability (GHSA-hxhm-rq9f-7xj7)

MyBB is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb";...

CVE-2022-39265

CVE-2022-39265 affects MyBB prior to 1.8.31. The vulnerability arises from the Mail Settings → Additional Parameters for PHP’s mail() function, where the mail_parameters setting, in combination with the configured mail program’s options, can expose sensitive information and enable Remote Code Exe...

CVE-2022-39265 Mail settings' command parameter injection in mybb

MyBB is a free and open source forum software. The Mail Settings → Additional Parameters for PHP's mail function mailparameters setting value, in connection with the configured mail program's options and behavior, may allow access to sensitive information and Remote Code Execution RCE. The...