uWSGI PHP Plugin Local File Inclusion

uWSGI PHP Plugin before 2.0.17 mishandles a DOCUMENTROOT check during use of the --php-docroot option, making it susceptible to local file inclusion. id: CVE-2018-7490 info: name: uWSGI PHP Plugin Local File Inclusion author: madrobot severity: high description: uWSGI PHP Plugin before 2.0.17...

CVE-2026-7490

creationtimestamp| type| source ---|---|--- 2026-04-30 02:20:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10895-25ca1-2.html...

Linux Distros Unpatched Vulnerability : CVE-2017-7490

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing. CVE-2017-7490 Note that Nessus relies on the presence of...

MAL-2025-7490 Malicious code in @crabas0npm/quis-doloremque-aliquam (npm)

The package @crabas0npm/quis-doloremque-aliquam was found to contain malicious code...

CVE-2025-7490

CVE-2025-7490 affects PHPGurukul Vehicle Parking Management System v1.13. The vulnerability is a SQL injection in /admin/reg-users.php triggered by manipulating the del parameter, allowing remote exploitation. Multiple sources confirm it is critical/high severity with public disclosure of the exp...

CVE-2025-7490 PHPGurukul Vehicle Parking Management System reg-users.php sql injection

A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. Affected is an unknown function of the file /admin/reg-users.php. The manipulation of the argument del leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2020-7490

A CWE-426: Untrusted Search Path vulnerability exists in Vijeo Designer Basic V1.1 HotFix 15 and prior and Vijeo Designer V6.9 SP9 and prior, which could cause arbitrary code execution on the system running Vijeo Basic when a malicious DLL library is loaded by the Product...

Ubuntu: Security Advisory (USN-7490-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2013-7490

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the DBI module before 1.632 for Perl. Using many arguments to methods for Callbacks may lead to memory corruption. CVE-2013-7490 Note...

Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk

A critical security flaw has been disclosed in the Microchip Advanced Software Framework ASF that, if successfully exploited, could lead to remote code execution. The vulnerability, tracked as CVE-2024-7490, carries a CVSS score of 9.5 out of a maximum of 10.0. It has been described as a...

CVE-2024-7490

creationtimestamp| type| source ---|---|--- 2024-08-08 18:04:28+00:00| seen| https://t.me/cvedetector/2791 2024-09-23 10:55:29+00:00| published-proof-of-concept| https://t.me/HackingInsights/14086 2024-09-23 12:14:33+00:00| seen| https://t.me/thehackernews/5621 2024-09-23 14:05:18+00:00| seen|...

CVE-2024-7490 Remote Code Execution in Advanced Software Framework DHCP server

Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow. This vulnerability is associated with program files tinydhcpserver.C and program routines lwipdhcpfindoption. This issue affect...

CVE-2024-7490 Remote Code Execution in Advanced Software Framework DHCP server

Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow. This vulnerability is associated with program files tinydhcpserver.C and program routines lwipdhcpfindoption. This issue affect...

RHEL 7 : perl-dbi (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl-dbi: Buffer overflow on an overlong DBD class name CVE-2020-14393 - An issue was discovered in the D...

SUSE CVE-2017-7490

In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing...

SUSE CVE-2018-7490

uWSGI before 2.0.17 mishandles a DOCUMENTROOT check during use of the --php-docroot option, allowing directory traversal...

Ubuntu: Security Advisory (USN-4509-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

liveprofiler (>=0.2.0 <=1.0.0), prediction (=0.0.3) potentially affected by CVE-2018-7490 via uwsgi (>=2.0.13.1 <=2.0.15)

uwsgi PYPI version =2.0.13.1, =0.2.0, =1.0.0 - prediction =0.0.3 Source cves: CVE-2018-7490 Source advisory: OSV:GHSA-H2VM-C85R-5VH5...

SUSE: Security Advisory (SUSE-SU-2020:14510-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:2856-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...