Zoo Management System 1.0 - SQL Injection

Zoo Management System 1.0 contains a SQL injection vulnerability via the username parameter on the login page. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. id:...

CVE-2026-7160

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

EUVD-2021-10017

Malware in sbrugna...

EUVD-2022-7160

Malicious code in bioql PyPI...

MAL-2025-7160 Malicious code in @crabas0npm/aliquam-omnis-doloribus-eligendi (npm)

The package @crabas0npm/aliquam-omnis-doloribus-eligendi was found to contain malicious code...

CVE-2025-7160

creationtimestamp| type| source ---|---|--- 2025-07-08 06:44:11+00:00| seen| https://bsky.app/profile/potato.software/post/3ltgp6uoc5n2t...

CVE-2024-7160

A vulnerability classified as critical has been found in TOTOLINK A3700R 9.1.2u.5822B20200513. Affected is the function setWanCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to command injection. It is possible to launch the attack remotely. The exploit has...

CVE-2024-7160

creationtimestamp| type| source ---|---|--- 2024-07-28 17:42:44+00:00| seen| https://t.me/cvedetector/1774...

RHEL 7 : rh-nodejs8-nodejs (RHSA-2018:2949)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2949 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...

BIT-NODE-2021-22884

Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes “localhost6”. When “localhost6” is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim's DN...

CVE-2023-7160

creationtimestamp| type| source ---|---|--- 2023-12-29 09:26:31+00:00| seen| https://t.me/ctinow/160387 2023-12-30 01:35:26+00:00| seen| https://t.me/cibsecurity/73910 2024-01-20 13:46:07+00:00| seen| https://t.me/ctinow/170622...

CVE-2023-7160

CVE-2023-7160 affects SourceCodester Engineers Online Portal 1.0, specifically the Add Engineer Handler. The vulnerability arises from handling the first name/last name input, where injected script tags like can trigger cross-site scripting. The issue can be exploited remotely, and the exploit h...

CVE-2023-7160 SourceCodester Engineers Online Portal Add Engineer cross site scripting

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Add Engineer Handler. The manipulation of the argument first name/last name with the input alert0 leads to cross site...

Oracle Linux 8 : opensc (ELSA-2023-7160)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-7160 advisory. - Fix CVE-2023-2977: potential buffer overrun in pkcs15 cardoshaveverifyrcpackage 2211093 Tenable has extracted the preceding description block directly from th...

RHEL 8 : opensc (RHSA-2023:7160)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:7160 advisory. The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operation...

CentOS 8 : opensc (CESA-2023:7160)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2023:7160 advisory. - A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a sma...

BELL-CVE-2018-7160 CVE-2018-7160 does not affect BellSoft software

Bulletin has no description...

K63025104: NodeJS vulnerability CVE-2018-7160

Security Advisory Description The Node.js inspector, in 6.x and later is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser on the same computer, or another computer with network acces...

Mageia: Security Advisory (MGASA-2019-0277)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:1183-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...