PT-2025-44752

Name of the Vulnerable Software and Affected Versions EasyFlow .NET and EasyFlow AiNet developed by Digiwin affected versions not specified Description EasyFlow .NET and EasyFlow AiNet developed by Digiwin contains a SQL Injection issue. Authenticated remote attackers can inject arbitrary SQL...

EUVD-2020-29728

Malware in sbrugna...

EUVD-2022-30637

Malicious code in bioql PyPI...

EUVD-2024-54090

Malicious code in bioql PyPI...

EUVD-2022-24697

Malicious code in bioql PyPI...

EUVD-2025-25511

Malicious code in bioql PyPI...

EUVD-2024-54091

Malicious code in bioql PyPI...

EUVD-2022-24694

Malicious code in bioql PyPI...

EUVD-2022-31217

Malicious code in bioql PyPI...

EUVD-2022-30897

Malicious code in bioql PyPI...

EUVD-2025-13291

Malicious code in bioql PyPI...

EUVD-2025-26168

Malicious code in bioql PyPI...

CVE-2025-10266

NUP Pro developed by NewType Infortech has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-10266

NUP Pro by NewType Infortech is affected by a SQL injection vulnerability that allows unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents. The CVE entry indicates a critical impact (CONFIDENTIALITY, INTEGRITY, and AVAILABILITY affected) ...

CVE-2025-8861

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...

CVE-2025-8861

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...

CVE-2025-8858

CVE-2025-8858 concerns the Clinic Image System developed by Changing. The connected documents confirm a SQL Injection vulnerability that enables unauthenticated remote attackers to inject arbitrary SQL to read database contents. No explicit affected versions or fixed/patch information are provide...

CVE-2025-8858 Changing｜Clinic Image System - SQL Injection

Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

CVE-2025-8861

CVE-2025-8861 concerns Changing TSA, a timestamp server product, with a Missing Authentication vulnerability that allows unauthenticated remote attackers to read, modify, and delete database contents. The underlying issue is an access-control flaw (lack of authentication). The connected documents...

CVE-2025-8861 Changing｜TSA - Missing Authentication

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...