145 matches found
MiracleLinux 3 : drupal-6.30-1.AXS3 (AXSA:2014-234:01)
The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2014-234:01 advisory. Drupal is a free software package that allows an individual or a community of users to easily publish, manage and organize a wide variety of content ...
CVE-2026-22239
The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable email sending API. Successful exploitation of this vulnerability could allow the...
Bluspark BLUVOYIX 安全漏洞
Bluspark BLUVOYIX is a digital supply chain management platform from US-based Bluspark, Inc. Bluspark BLUVOYIX suffers from a security vulnerability that stems from a flaw in the design of the email sending API, which could lead to an attacker sending unsolicited emails to anyone on behalf of the...
PT-2026-2862
The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable email sending API. Successful exploitation of this vulnerability could allow the...
CVE-2021-22863
An improper access control vulnerability was identified in the GitHub Enterprise Server GraphQL API that allowed authenticated users of the instance to modify the maintainer collaboration permission of a pull request without proper authorization. By exploiting this vulnerability, an attacker woul...
Medium: python-urllib3
Issue Overview: urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage an...
Synology BeeStation (BSM) Multiple Vulnerabilities (Synology_SA_24_21) - Active Check
Synology BeeStation BSM is prone to multiple vulnerabilities in the Synology Drive Server. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...
PT-2025-49332
The Listar – Directory Listing & Classifieds WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the '/wp-json/listar/v1/place/save' REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for...
CVE-2025-6949
An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A critical authorization flaw in the API allows an authenticated, low-privileged user to create a new administrator account, including accounts with usernames identical to...
CVE-2025-6894
An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in the API authorization logic of the affected device allows an authenticated, low-privileged user to execute the administrative ping function, which is restricted ...
CVE-2025-58903
CVE-2025-58903 affects Fortinet FortiOS FortiOS API in 7.6.0–7.6.3 and earlier than 7.4.8. It is an Unchecked Return Value (CWE-252) vulnerability that, when exploited by an authenticated user via a crafted request, can trigger a Null Pointer Dereference and crash the HTTP daemon, enabling a deni...
EUVD-2009-3671
Malware in sbrugna...
EUVD-2016-7928
Malware in sbrugna...
EUVD-2019-5997
Malware in sbrugna...
EUVD-2007-4047
Malware in sbrugna...
EUVD-2021-1442
Malware in sbrugna...
EUVD-2018-11729
Malware in sbrugna...
EUVD-2022-42529
Malicious code in bioql PyPI...
EUVD-2022-37719
Malicious code in bioql PyPI...
EUVD-2024-47127
Malicious code in bioql PyPI...