CVE-2026-29014

CVE-2026-29014 affects MetInfo CMS versions 7.9, 8.0, and 8.1 with an unauthenticated PHP code injection that enables remote code execution. The vulnerability arises from insufficient input neutralization in the execution path, allowing remote attackers to send crafted requests containing PHP cod...

MetInfo CMS 安全漏洞

MetInfo CMS is a content management system developed by MetInfo Corporation. Versions 7.9, 8.0, and 8.1 of MetInfo CMS have security vulnerabilities. These vulnerabilities stem from unvalidated PHP code injection, which could allow remote attackers to execute arbitrary code by sending specially...

EUVD-2018-12928

Malware in sbrugna...

EUVD-2006-6183

Malware in sbrugna...

EUVD-2006-5510

Malware in sbrugna...

EUVD-2007-0374

Malware in sbrugna...

EUVD-2017-12685

Malware in sbrugna...

EUVD-2017-12411

Malware in sbrugna...

EUVD-2019-2102

Malware in sbrugna...

EUVD-2005-3016

Malware in sbrugna...

EUVD-2021-16588

Malware in sbrugna...

EUVD-2006-2054

Malware in sbrugna...

EUVD-2023-26259

Malicious code in bioql PyPI...

[Important] [Security] Vulnerability Fixes in urllib3, PyYAML, and Pillow (CVE-2018-20060, CVE-2020-1747, CVE-2020-14343, CVE-2023-50447, and CVE-2023-44271) for VzLinux 7.9

This update fixes the vulnerabilities in urllib3, PyYAML, and Pillow, which are registered as CVE-2018-20060, CVE-2020-1747, CVE-2020-14343, CVE-2023-50447, and CVE-2023-44271...

[Important] [Security] Vulnerability Fix in sqlite (CVE-2025-6965) for VzLinux 7.9

This update resolves the vulnerability in sqlite registered as CVE-2025-6965...

CVE-2023-6562

JPX Fragment List flst box vulnerability in Kakadu 7.9 allows an attacker to exfiltrate local and remote files reachable by a server if the server allows the attacker to upload a specially-crafted the image that is displayed back to the attacker...

CVE-2021-21871

A memory corruption vulnerability exists in the DMG File Format Handler functionality of PowerISO 7.9. A specially crafted DMG file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability. The vendor fixed it in a bug-release of the current versi...

com.amazonaws:aws-java-sdk-s3 Dependency in Bamboo Data Center and Server

This High severity com.amazonaws:aws-java-sdk-s3 Dependency vulnerability was introduced in versions 9.0.0, 9.1.0, and 9.2.1 of Bamboo Data Center and Server. This com.amazonaws:aws-java-sdk-s3 Dependency vulnerability, with a CVSS Score of 7.9 and a CVSS Vector of...

Red Hat Enterprise Linux SEoL (7.8.x <= x <= 7.9.x)

According to its version, Red Hat Enterprise Linux is between 7.8.x and 7.9.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilitie...

pki-core security update

10.5.18-32 - - RHEL 7.9 Async Security Update CY24Q2.4: - - Updated nspr-devel and nss-devel build requirements as well as nss and nss-tools runtime requirements mharmsen - Updated jss dependencies mharmsen - Added git build dependency mharmsen - Additional trivial fix jmagne - RHEL-9917 -...