36 matches found
Tenable Security Center 安全漏洞
Tenable Security Center is a security center provided by the American company Tenable. There are security vulnerabilities present in Tenable Security Center, and these vulnerabilities stem from remote attacks by authentication attackers, which allow them to execute arbitrary code...
PT-2026-2044
Name of the Vulnerable Software and Affected Versions Merit LILIN DVR/NVR models affected versions not specified Merit Lilin DH032 affected versions not specified Description An authenticated remote attacker can inject arbitrary OS commands on Merit LILIN DVR/NVR devices and execute them. This is...
CVE-2025-15239
QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents...
CVE-2025-12864
CVE-2025-12864 affects U-Office Force by e-Excellence and describes an SQL Injection vulnerability exploitable by an authenticated remote attacker to read, modify, and delete database contents. Root cause: improper handling of SQL commands in the vulnerable component. Impact metrics indicate high...
EUVD-2018-11795
Malware in sbrugna...
EUVD-2018-11797
Malware in sbrugna...
EUVD-2019-10264
Malware in sbrugna...
EUVD-2020-24648
Malware in sbrugna...
EUVD-2020-13024
Malware in sbrugna...
EUVD-2023-35151
Malicious code in bioql PyPI...
EUVD-2022-30034
Malicious code in bioql PyPI...
EUVD-2024-54492
Malicious code in bioql PyPI...
EUVD-2024-18067
Malicious code in bioql PyPI...
EUVD-2021-6650
Malicious code in bioql PyPI...
CVE-2023-20231
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the...
CVE-2019-13929
A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...
CVE-2022-47385
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
Siemens OZW672 and OZW772 Web Server
SUMMARY OZW672 and OZW772 Web Server versions before V5.2 contain a stored cross-site scripting XSS vulnerability that could allow an authenticated remote attacker to inject arbitrary JavaScript code that is later executed by another authenticated victim user with potential higher privileges...
CVE-2024-47565
A vulnerability has been identified in SINEC Security Monitor All versions V4.9.0. The affected application does not properly validate that user input complies with a list of allowed values. This could allow an authenticated remote attacker to compromise the integrity of the configuration of the...
CVE-2024-20416
A vulnerability in the upload module of Cisco RV340 and RV345 Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to insufficient boundary checks when processing specific HTTP requests. An attacker...