2125 matches found
EUVD-2023-43477
Malicious code in bioql PyPI...
EUVD-2022-43299
Malicious code in bioql PyPI...
EUVD-2022-52656
Malicious code in bioql PyPI...
EUVD-2022-37622
Malicious code in bioql PyPI...
EUVD-2025-28375
Malicious code in bioql PyPI...
EUVD-2022-46691
Malicious code in bioql PyPI...
EUVD-2022-38962
Malicious code in bioql PyPI...
EUVD-2023-27567
Malicious code in bioql PyPI...
CVE-2025-45326
An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code via the submitsize.php component...
CVE-2025-45326
An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code via the submitsize.php component...
CVE-2025-45326
CVE-2025-45326 affects PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1. The issue resides in the submit_size.php component and enables remote attackers to execute arbitrary code. Documented impact is consistent with a remote code execution vulnerability (CVSSv3.1 base score 6.5; Network attack vector; no us...
PT-2025-39208
Name of the Vulnerable Software and Affected Versions PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 Description An issue allows remote attackers to execute arbitrary code via the submit size.php component. Recommendations At the moment, there is no information about a newer version that contains a...
PocketVJ CP 安全漏洞
PocketVJ CP is a control panel software by magdesign individual developers. A security vulnerability exists in PocketVJ CP version 3.9.1, which stems from a flaw in the submitsize.php component that could lead to the execution of arbitrary code...
CVE-2025-59056 FreePBX vulnerable to unauthenticated Denial of Service
FreePBX is an open-source web-based graphical user interface. In FreePBX 15, 16, and 17, malicious connections to the Administrator Control Panel web interface can cause the uninstall function to be triggered for certain modules. This function drops the module's database tables, which is where mo...
CVE-2025-55211
CVE-2025-55211 affects FreePBX up to version 17.0.21, where authenticated users in the Administrator Control Panel could execute arbitrary shell commands by maliciously changing the language setting of the framework module. Root cause: language manipulation in the framework module allows command ...
CVE-2025-55211 FreePBX Post-Authenticated Command Injection
FreePBX is an open-source web-based graphical user interface. From 17.0.19.11 to before 17.0.21, authenticated users of the Administrator Control Panel ACP can run arbitrary shell commands by maliciously changing languages of the framework module. This vulnerability is fixed in 17.0.21...
CVE-2025-55211 FreePBX Post-Authenticated Command Injection
FreePBX is an open-source web-based graphical user interface. From 17.0.19.11 to before 17.0.21, authenticated users of the Administrator Control Panel ACP can run arbitrary shell commands by maliciously changing languages of the framework module. This vulnerability is fixed in 17.0.21...
PT-2025-37763
Name of the Vulnerable Software and Affected Versions: FreePBX versions 17.0.19.11 through 17.0.20 Description: FreePBX is a web-based graphical user interface. Authenticated users of the Administrator Control Panel ACP can execute arbitrary shell commands by manipulating the framework module's...
Linux Distros Unpatched Vulnerability : CVE-2018-19274
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Passing an absolute path to a fileexists check in phpBB before 3.2.4 allows Remote Code Execution through Object Injection by employing Phar deserialization whe...
CVE-2025-55209
contactmanager is a module for FreePBX@, which is an open source GUI that controls and manages Asterisk© PBX. In versions 15.0.14 and below, 16.0.0 through 16.0.26.4 and 17.0.0 through 17.0.5, a stored cross-site scripting XSS vulnerability in FreePBX allows a low-privileged User Control Panel UC...