530 matches found
EUVD-2009-5071
Malware in sbrugna...
CVE-2025-9485
The OAuth Single Sign On – SSO OAuth Client plugin for WordPress is vulnerable to Improper Verification of Cryptographic Signature in versions up to, and including, 6.26.12. This is due to the plugin performing unsafe JWT token processing without verification or validation in the...
EUVD-2023-44814
Malicious code in bioql PyPI...
EUVD-2025-28994
Malicious code in bioql PyPI...
EUVD-2021-31872
Malicious code in bioql PyPI...
EUVD-2021-30674
Malicious code in bioql PyPI...
EUVD-2021-29041
Malicious code in bioql PyPI...
EUVD-2022-39680
Malicious code in bioql PyPI...
EUVD-2023-42132
Malicious code in bioql PyPI...
EUVD-2022-7098
Malicious code in bioql PyPI...
Erlang/OTP (Erlang OTP) TLS Client Authentication Bypass Vulnerability (GHSA-f7jg-qm7f-ppm8) - Windows
Erlang/OTP Erlang OTP is prone to a TLS client authentication bypass vulnerability in the ssl component. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Erlang/OTP (Erlang OTP) TLS Client Authentication Bypass Vulnerability (GHSA-f7jg-qm7f-ppm8) - Linux
Erlang/OTP Erlang OTP is prone to a TLS client authentication bypass vulnerability in the ssl component. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2025-36222
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions...
CVE-2025-36222
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions...
CVE-2025-36222 IBM Fusion insecure default configuration
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions...
CVE-2025-36222 IBM Fusion insecure default configuration
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions...
Improper TLS Configuration
github.com/hydraide/hydraide is vulnerable to improper TLS configuration. The vulnerability is due to the client using only RootCAs without proper certificate verification and the server lacking ClientCAs and ClientAuth, which allows an attacker to perform man-in-the-middle MITM attacks and read...
Linux Distros Unpatched Vulnerability : CVE-2024-45160
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect credential validation in LemonLDAP::NG 2.18.x and 2.19.x before 2.19.2 allows attackers to bypass OAuth2 client authentication via an empty...
GHSA-QP7J-X725-G67F HydrAIDE Authentication Bypass Vulnerability
Summary There is no authentication of any kind. Details TLS is implemented, the tunnel between the client and server is secure, however once data is on the server, it's free to be read by any adversaries. On the client side :...
HydrAIDE Authentication Bypass Vulnerability
Summary There is no authentication of any kind. Details TLS is implemented, the tunnel between the client and server is secure, however once data is on the server, it's free to be read by any adversaries. On the client side :...