EUVD-2025-200921

Malicious code in elf-stats-festive-train-714 npm...

Malicious code in elf-stats-festive-train-714 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fdc505c7b51f4d98d54f7d3829a1dcc6c7fd38632a869859be60593f2951845 The package elf-stats-festive-train-714 was found to contain malicious code...

MAL-2025-192031 Malicious code in elf-stats-festive-train-714 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fdc505c7b51f4d98d54f7d3829a1dcc6c7fd38632a869859be60593f2951845 The package elf-stats-festive-train-714 was found to contain malicious code...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-714)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-714 advisory. In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew CVE-2023-52887 In the Linux...

Cross site scripting

SAP CRM ABAP Grantor Management - versions 700, 701, 702, 712, 713, 714, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the applicatio...

CVE-2023-33986 Cross-Site Scripting (XSS) vulnerability in SAP CRM ABAP (Grantor Management)

SAP CRM ABAP Grantor Management - versions 700, 701, 702, 712, 713, 714, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the applicatio...

CVE-2023-33986

CVE-2023-33986 affects SAP CRM ABAP (Grantor Management) versions 700–714. The root cause is insufficient encoding of user-controlled inputs, leading to a Cross-Site Scripting (XSS) vulnerability. Exploitation can result in a limited impact on confidentiality and integrity of the application (no ...

SAP CRM 安全漏洞

SAP CRM is a customer relationship management system from SAP, a German company. A security vulnerability exists in SAP CRM ABAP, which stems from a lack of authorization checks in the product. The following products and versions are affected: SAP CRM, Versions - 700, 701, 702, 712, 713, 714...

CGI Generic Local File Inclusion

The remote web server hosts CGI scripts that fail to adequately sanitize request strings. By leveraging this issue, an attacker may be able to include a local file and disclose its content. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...