EUVD-2025-23223

Malicious code in bioql PyPI...

EUVD-2025-23235

Malicious code in bioql PyPI...

CVE-2025-8347

A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud Platform 1.0. This affects an unknown part of the file /sys/task/findAllTask. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-8348

A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown code of the file /home. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and...

CVE-2025-8348

A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown code of the file /home. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and...

CVE-2025-8348

A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown code of the file /home. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and...

CVE-2025-8348 Kehua Charging Pile Cloud Platform home improper authentication

A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown code of the file /home. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and...

CVE-2025-8348 Kehua Charging Pile Cloud Platform home improper authentication

A vulnerability has been found in Kehua Charging Pile Cloud Platform 1.0 and classified as critical. This vulnerability affects unknown code of the file /home. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and...

CVE-2025-8348

CVE-2025-8348 affects Kehua Charging Pile Cloud Platform v1.0. Affected component: unknown code handling the /home file. Root cause: improper authentication enabling remote exploitation. Exploit publicly disclosed; remote attacker could abuse authentication failure to access/compromise. In the pr...

CVE-2025-8347

A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud Platform 1.0. This affects an unknown part of the file /sys/task/findAllTask. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-8347 Kehua Charging Pile Cloud Platform findAllTask sql injection

A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud Platform 1.0. This affects an unknown part of the file /sys/task/findAllTask. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-8347 Kehua Charging Pile Cloud Platform findAllTask sql injection

A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud Platform 1.0. This affects an unknown part of the file /sys/task/findAllTask. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-8347

CVE-2025-8347 affects Kehua Charging Pile Cloud Platform 1.0; vulnerability in /sys/task/findAllTask enables SQL injection, exploitable remotely. Exploit disclosed publicly. No remediation/fix version provided in the supplied documents.

Kehua Charging Pile Cloud Platform 安全漏洞

Kehua Charging Pile Cloud Platform is a charging pile cloud platform from China Kehua Kehua. A security vulnerability exists in Kehua Charging Pile Cloud Platform version 1.0, which originates from improper authentication due to misuse of the file /home...

PT-2025-31471 · Kehua · Kehua Charging Pile Cloud Platform

Name of the Vulnerable Software and Affected Versions: Kehua Charging Pile Cloud Platform version 1.0 Description: A critical issue exists within Kehua Charging Pile Cloud Platform 1.0, related to improper authentication. The vulnerability affects unknown code within the /home file and can be...

PT-2025-31470 · Kehua · Kehua Charging Pile Cloud Platform

Name of the Vulnerable Software and Affected Versions: Kehua Charging Pile Cloud Platform version 1.0 Description: A critical vulnerability exists in Kehua Charging Pile Cloud Platform 1.0. The issue involves a SQL injection affecting an unknown part of the /sys/task/findAllTask file. This allows...

Kehua Charging Pile Cloud Platform 安全漏洞

Kehua Charging Pile Cloud Platform is a charging pile cloud platform from Kehua, China. A security vulnerability exists in Kehua Charging Pile Cloud Platform version 1.0, which originates from a SQL injection due to an error in the file /sys/task/findAllTask...

Login Bypass Vulnerability in Charging Pile Operation Management System of Shenzhen Crestec Technology Co.

Shenzhen Crestec Technology Co., Ltd. is a technology enterprise engaged in the research, development, manufacturing and sales of UPS uninterruptible power supply, server room integration, maintenance-free lead-acid batteries, inverter power supply. A login bypass vulnerability exists in the...

Charging Pile Android App has Arbitrary Account Password Reset Vulnerability

Charging Pile APP is a software that provides electric vehicle owners with information service on the location, number, type and status of charging piles. Charging Pile Android APP has an arbitrary account password reset vulnerability. Allowing an attacker to reset a user's password by captcha...

Charging Pile Android App Has Information Leakage Vulnerability

Charging Pile APP is a software that provides electric vehicle owners with information service on the location, number, type and status of charging piles. Charging Pile Android APP has information leakage vulnerability. By grabbing packets, the attacker can arbitrarily view user's name, cell phon...