148 matches found
CVE-2025-41018
The CVE-2025-41018 entry details a SQL injection in Sergestec’s Exito v8.0. The vulnerability is reachable via the cat parameter in /public.php, allowing an attacker to retrieve, create, update, and delete databases. Connected sources (Red Hat, NVD, CVE lists, ENISA/EUVD) corroborate the same des...
CVE-2025-40765
A vulnerability has been identified in TeleControl Server Basic V3.1 All versions = V3.1.2.2 V3.1.2.3. The affected application contains an information disclosure vulnerability. This could allow an unauthenticated remote attacker to obtain password hashes of users and to login to and perform...
ANCORA: Accurate Intrusion Recovery for Web Applications
Modern web application recovery presents a critical dilemma. Coarse-grained snapshot rollbacks cause unacceptable data loss for legitimate users. Surgically removing an attack's impact is hindered by a fundamental challenge in high-concurrency environments: it is difficult to attribute resulting...
EUVD-2002-1098
Malware in sbrugna...
EUVD-2002-1404
Malware in sbrugna...
EUVD-2002-0988
Malware in sbrugna...
EUVD-2012-1837
Malware in sbrugna...
EUVD-2001-1329
Malware in sbrugna...
EUVD-2004-0017
Malware in sbrugna...
EUVD-2025-27979
Malicious code in bioql PyPI...
EUVD-2023-53982
Malicious code in bioql PyPI...
EUVD-2022-49681
Malicious code in bioql PyPI...
EUVD-2023-48016
Malicious code in bioql PyPI...
EUVD-2022-45807
Malicious code in bioql PyPI...
EUVD-2023-43024
Malicious code in bioql PyPI...
EUVD-2022-3737
Malicious code in bioql PyPI...
EUVD-2022-42262
Malicious code in bioql PyPI...
FoxCMS 安全漏洞
FoxCMS is a PHP-based content management system that provides web content management and publishing functions. A SQL injection vulnerability exists in FoxCMS 1.24 and earlier versions, which originates from the batchCope function in the /app/admin/controller/Images.php file that does not securely...
SQL Injection
Overview Affected versions of this package are vulnerable to SQL Injection via the dataPagename parameter in the /apprain/page/manage-static-pages/create/ path. An attacker can retrieve, create, update, or delete database records by injecting crafted input. Remediation There is no fixed version f...
BIT-GOLANG-2025-47907 Incorrect results returned from Rows.Scan in database/sql
Cancelling a query e.g. by cancelling the context passed to one of the query methods during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the expected results with...