134 matches found
EUVD-2023-35486
Malicious code in bioql PyPI...
EUVD-2023-35488
Malicious code in bioql PyPI...
EUVD-2023-35485
Malicious code in bioql PyPI...
EUVD-2023-35487
Malicious code in bioql PyPI...
EUVD-2023-35484
Malicious code in bioql PyPI...
CVE-2023-5030
creationtimestamp| type| source ---|---|--- 2025-06-18 14:41:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18741...
CVE-2023-5030
A vulnerability has been found in Tongda OA up to 11.10 and classified as critical. This vulnerability affects unknown code of the file general/hr/recruit/plan/delete.php. The manipulation of the argument PLANID leads to sql injection. The exploit has been disclosed to the public and may be used...
CVE-2025-5030
A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation leads to os command injection. The attack can be initiated...
CVE-2025-5030
creationtimestamp| type| source ---|---|--- 2025-05-21 16:41:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17138...
CVE-2025-5030 Ackites KillWxapkg wxapkg File Parser unpack.go processFile os command injection
A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation leads to os command injection. The attack can be initiated...
CVE-2025-5030 Ackites KillWxapkg wxapkg File Parser unpack.go processFile os command injection
A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation leads to os command injection. The attack can be initiated...
CVE-2025-5030
CVE-2025-5030 affects Ackites KillWxapkg up to 2.4.1. The vulnerability resides in the function processFile of the file internal/unpack/unpack.go in the wxapkg file parser, enabling OS command injection . Multiple connected sources corroborate remote exploitation with high attack complexity and d...
Linux Distros Unpatched Vulnerability : CVE-2014-5030
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on 1 index.html, 2 index.class, 3 index.pl, 4 index.php, 5 index.pyc, or 6...
Linux Distros Unpatched Vulnerability : CVE-2016-5030
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dwarfcalculateinfosectionendptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service NULL pointer dereference via a...
CVE-2024-39773
An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2024-5030
The CM Table Of Contents WordPress plugin before 1.2.3 does not have CSRF check in place when resetting its settings, which could allow attackers to make a logged in admin perform such action via a CSRF attack...
CVE-2024-5030
creationtimestamp| type| source ---|---|--- 2024-11-18 06:02:33+00:00| seen| https://infosec.exchange/users/cve/statuses/113502437564937679 2024-11-18 08:10:58+00:00| seen| https://t.me/cvedetector/11285...
WordPress CM Table Of Contents – WordPress TOC Plugin Plugin < 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)
Software CM Table Of Contents – WordPress TOC Plugin Type Plugin Vulnerable versions 1.2.3 Fixed in 1.2.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-5030 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bf478e63ad63...
CentOS 7 : java-1.8.0-ibm (RHSA-2021:5030)
The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:5030 advisory. - Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are...
RHEL 7 : libdwarf (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libdwarf: heap-based buffer over-read in dwarfformsdata CVE-2017-9055 - The dwarfreadciefdeprefix functio...