113 matches found
Mesalvo Meona Client Launcher Component和Mesalvo Meona Server Component 访问控制错误漏洞
The Mesalvo Meona Client Launcher Component and the Mesalvo Meona Server Component are both products of the Mesalvo company. The Mesalvo Meona Client Launcher Component is a component designed for launching clients of medical information systems and facilitating application access. The Mesalvo...
NetArt Media News Lister 跨站脚本漏洞
NetArt Media News Lister is a website news management system developed by NetArt Media in Bulgaria. It supports news publishing, article management, and content display. NetArt Media News Lister has a cross-site scripting vulnerability. This vulnerability stems from the title parameter in the new...
CVE-2026-2506
The CVE-2026-2506 entry concerns the EM Cost Calculator plugin for WordPress, affected up to version 2.3.1. The vulnerability is a Stored Cross-Site Scripting flaw caused by attacker-controlled customer_name data being stored and rendered in the admin customer list without output escaping. This e...
CVE-2025-12387
A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...
CVE-2025-12387 Denial of Service in Pix-Link LV-WR21Q
A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...
CVE-2025-12387 Denial of Service in Pix-Link LV-WR21Q
A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...
PT-2026-4913
A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...
CVE-2026-0733
CVE-2026-0733 affects PHPGurukul Online Course Registration System (versions up to 3.1). The vulnerability is in the file /onlinecourse/admin/manage-students.php where manipulation of the id/cid parameter enables SQL injection. It can be triggered remotely, and multiple sources confirm that the e...
PT-2025-48565
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, there is an IDOR Insecure Direct Object Reference vulnerability in the Grav CMS Admin Panel which allows low-privilege users to access sensitive information from other accounts. Although direct account takeover is not possible, admin emai...
Radiometrics VizAir 访问控制错误漏洞
Radiometrics VizAir is a weather monitoring and warning system from Radiometrics, Inc. An access control error vulnerability exists in Radiometrics VizAir that originates from unauthenticated access to the administration panel of the VizAir system, which could result in modification of critical...
PT-2025-41929
Name of the Vulnerable Software and Affected Versions Ivanti EPMM versions prior to 12.6.0.2 Ivanti EPMM versions prior to 12.5.0.4 Ivanti EPMM versions prior to 12.4.0.4 Description A path traversal issue exists in the admin panel of Ivanti EPMM. A remote, authenticated attacker with...
EUVD-2016-10288
Malware in sbrugna...
EUVD-2021-2033
Malware in sbrugna...
EUVD-2008-7124
Malware in sbrugna...
EUVD-2005-3021
Malware in sbrugna...
EUVD-2014-8325
Malware in sbrugna...
EUVD-2019-11335
Malware in sbrugna...
EUVD-2021-23219
Malware in sbrugna...
EUVD-2009-1602
Malware in sbrugna...
EUVD-2022-33010
Malicious code in bioql PyPI...