ROS-20251031-01

Vulnerability of MongoDB database management system is related to incorrect processing of certain accumulator functions when additional parameters are specified in the $group operation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Shopware vulnerable to MediaVisibilityRestrictionSubscriber bypass when reading media entities by aggregating fields individually

In Shopware core and platform versions before 6.6.10.7 and 6.7.3.1, media visibility restrictions applied by MediaVisibilityRestrictionSubscriber are not enforced for aggregation API requests. Authorization filters are only injected during standard entity reads; aggregation queries can be...

GHSA-M895-2HJ3-8CG9 Shopware vulnerable to MediaVisibilityRestrictionSubscriber bypass when reading media entities by aggregating fields individually

In Shopware core and platform versions before 6.6.10.7 and 6.7.3.1, media visibility restrictions applied by MediaVisibilityRestrictionSubscriber are not enforced for aggregation API requests. Authorization filters are only injected during standard entity reads; aggregation queries can be...

EUVD-2025-31835

A security flaw has been discovered in JhumanJ OpnForm up to 1.9.3. The impacted element is an unknown function of the component API Endpoint. The manipulation results in cross-site request forgery. The attack may be performed from remote. The exploit has been released to the public and may be...

EUVD-2025-31842

A vulnerability was detected in JhumanJ OpnForm up to 1.9.3. Affected by this issue is some unknown functionality of the file /answer. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit is now public and may be used. The patch is identified as...

EUVD-2005-2417

Malware in sbrugna...

EUVD-2008-2988

Malware in sbrugna...

EUVD-2021-18903

Malware in sbrugna...

EUVD-2007-6022

Malware in sbrugna...

EUVD-2008-2991

Malware in sbrugna...

EUVD-2008-2990

Malware in sbrugna...

EUVD-2013-1176

Malware in sbrugna...

EUVD-2020-4985

Malware in sbrugna...

EUVD-2015-0622

Malware in sbrugna...

EUVD-2021-18906

Malware in sbrugna...

EUVD-2008-2989

Malware in sbrugna...

Gathers structured vuln data from plugins that fork

This plugin generates internal host tags for vulnerability data from plugins that fork. It queries scratchpad tables, aggregates the vulnerability data by plugin ID, port and protocol, then attaches the data to the scan as internal host tags. This plugin does not create a scan vulnerability repor...

FreeBSD : mongodb -- MongoDB Server access to non-initialized memory (a9dc3c61-a20f-11f0-91d8-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a9dc3c61-a20f-11f0-91d8-b42e991fc52e advisory. [email protected] reports: MongoDB Server may access non-initialized region of memory leading to unexpect...

OptiFLIDS: Optimized Federated Learning for Energy-Efficient Intrusion Detection in IoT

In critical IoT environments, such as smart homes and industrial systems, effective Intrusion Detection Systems IDS are essential for ensuring security. However, developing robust IDS solutions remains a significant challenge. Traditional machine learning-based IDS models typically require large...

EUVD-2024-53304

Malicious code in bioql PyPI...