12 matches found
EUVD-2025-28197
Malicious code in bioql PyPI...
CVE-2025-60133
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DJ-Extensions.com PE Easy Slider pe-easy-slider allows Stored XSS.This issue affects PE Easy Slider: from n/a through = 1.1.0...
PT-2025-14389 · Frizzly · Frizzly
Name of the Vulnerable Software and Affected Versions: Frizzly versions 1.1.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For Frizzly versions 1.1.0 and...
PT-2025-7803 · Benner · Benner Modernanet
Name of the Vulnerable Software and Affected Versions: Benner ModernaNet versions up to 1.1.0 Description: A critical issue affects some unknown functionality of the file /Home/JS CarregaCombo?formName=DADOS PESSOAIS PLANO&additionalCondition=&insideParameters=&elementToReturn=DADOS PESSOAIS...
Oppia 安全漏洞
Oppia is an online learning tool. Used to easily create and share interactive activities. A security vulnerability exists in Oppia versions 1.1.0 through 3.3.2, which stems from the use of the string equality operator == when comparing received CSRF tokens to expected tokens, and can be exploited...
PT-2023-21713 · Pdfio +1 · Pdfio +1
Name of the Vulnerable Software and Affected Versions: PDFio versions 1.1.0 and prior Description: A denial of service issue exists in the pdfio parser, where crafted PDF files can cause the program to run at 100% utilization and never terminate. Recommendations: For PDFio versions 1.1.0 and prio...
PT-2023-18840 · Unknown · Barenboim Json-Parser
Name of the Vulnerable Software and Affected Versions: Barenboim json-parser versions 1.1.0 and earlier Description: The issue allows an attacker to execute arbitrary code via the json value parse function. This is a result of a Buffer OverFlow Vulnerability in the Barenboim json-parser...
Stormshield Network Security 访问控制错误漏洞
Stormshield Network Security is a next-generation UTM Unified Threat Management firewall from the French company Stormshield. A security vulnerability in Stormshield 1.1.0 and 2.1.0 through 2.9.0 could allow an attacker to block client access to the VPN and gain access to sensitive information...
@2109-t5/server (>=1.0.0 <=1.0.9), @abios/abios-redoc (>=1.0.0 <=2.5.0) +1091 more potentially affected by CVE-2021-23807 via jsonpointer (>=1.1.0 <=4.1.0)
jsonpointer NPM version =1.1.0, =1.0.0, =1.0.0, =0.12.4, =1.0.0, =2.13.1, =1.0.0, =0.0.1, =2.6.10, =2.0.0, =0.0.1, =0.0.1, =1.1.3 and more Source cves: CVE-2021-23807 Source advisory: OSV:GHSA-282F-QQGM-C34Q...
Rsolutions FortiAI 操作系统命令注入漏洞
Rsolutions FortiAI is an application from Canadian company Rsolutions Inc. for recognizing patterns in large amounts of data, which allows it to detect trends in malware functionality and categorize threats faster than humans can. Rsolutions FortiAI suffers from an operating system command...
PT-2020-15358 · Jenkins · Jenkins Mabl Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Mac Plugin versions 1.1.0 and earlier Description: A cross-site request forgery issue allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials. Recommendations: For Jenkins Mac Plugin versio...
PT-2016-3313 · Openssl +3 · Openssl +3
Name of the Vulnerable Software and Affected Versions: OpenSSL versions 1.1.0 through 1.1.0a Description: The issue is related to an error in the resource control mechanism of the state-machine implementation in OpenSSL, specifically in statem/statem.c and statem/statem lib.c. This could allow a...