448 matches found
EUVD-2017-16493
Malware in sbrugna...
EUVD-2008-1950
Malware in sbrugna...
EUVD-2024-0719
Malicious code in bioql PyPI...
EUVD-2022-1625
Malicious code in bioql PyPI...
EUVD-2025-23848
Malicious code in bioql PyPI...
Yoosee 安全漏洞
Yoosee is a smart home mobile application from the Chinese company Yoosee. A security vulnerability exists in Yoosee version 6.32.4, which originates from a SQL injection vulnerability in the back-end API endpoint, which may result in the extraction of sensitive database information...
CVE-2025-55306
GenXFX is an advance IA trading platform that will focus on forex trading. A vulnerability was identified in the GenX FX backend where API keys and authentication tokens may be exposed if environment variables are misconfigured. Unauthorized users could gain access to cloud resources Google Cloud...
CVE-2025-55306
GenXFX is an advance IA trading platform that will focus on forex trading. A vulnerability was identified in the GenX FX backend where API keys and authentication tokens may be exposed if environment variables are misconfigured. Unauthorized users could gain access to cloud resources Google Cloud...
Information Exposure
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Information Exposure via the SharedMemoryManager::GrowIfNeeded function in the bundled Python backend. An attacker coul...
CVE-2025-23334
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds read by sending a request. A successful exploit of this vulnerability might lead to information disclosure...
CVE-2025-23333
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds read by manipulating shared memory data. A successful exploit of this vulnerability might lead to information disclosure...
CVE-2025-23318
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to code execution, denial of service, data tampering, and information disclosure...
CVE-2025-23333
CVE-2025-23333 is acknowledged in NVIDIA’s security bulletin as a vulnerability in the Python backend of the Triton Inference Server for Windows and Linux. The issue allows an attacker to perform an out-of-bounds read by manipulating shared memory data, with information disclosure as the stated i...
CVE-2025-6352
CVE-2025-6352 affects code-projects Automated Voting System 1.0, Backend vote.php. The vulnerability involves an unknown function in /vote.php enabling direct request manipulation that can be triggered remotely, with exploitation disclosed publicly. Multiple connected sources corroborate a remote...
CVE-2025-5695 Teledyne FLIR AX8 Backend subscriptions.php subscribe_to_alarm command injection
A vulnerability has been found in Teledyne FLIR AX8 up to 1.46.16. This impacts the function subscribetospot/subscribetodelta/subscribetoalarm of the file /usr/www/application/models/subscriptions.php of the component Backend. Such manipulation leads to command injection. It is possible to launch...
CVE-2024-38971
vaeThink 1.0.2 is vulnerable to stored Cross Site Scripting XSS in the system backend...
CVE-2021-41286
Omikron MultiCash Desktop 4.00.008.SP5 relies on a client-side authentication mechanism. When a user logs into the application, the validity of the password is checked locally. All communication to the database backend is made via the same technical account. Consequently, an attacker can attach a...
DataEase 安全漏洞
DataEase is an open source data visualization and analysis tool from DataEase Open Source. It is used to help users quickly analyze data and gain insight into business trends for business improvement and optimization. A security vulnerability exists in DataEase versions prior to 2.10.8 that...
CVE-2025-3389 hailey888 oa_system Backend InformManageController.java testMess cross site scripting
A vulnerability, which was classified as problematic, has been found in hailey888 oasystem up to 2025.01.01. This issue affects the function testMess of the file cn/gson/oasys/controller/inform/InformManageController.java of the component Backend. The manipulation of the argument menu leads to...
CVE-2025-2352 StarSea99 starsea-mall Backend save cross site scripting
A vulnerability, which was classified as problematic, has been found in StarSea99 starsea-mall 1.0. This issue affects some unknown processing of the file /admin/indexConfigs/save of the component Backend. The manipulation of the argument categoryName leads to cross site scripting. The attack may...