198 matches found
EUVD-2012-6371
Malware in sbrugna...
EUVD-2022-6118
Malicious code in bioql PyPI...
EUVD-2022-4741
Malicious code in bioql PyPI...
EUVD-2022-6067
Malicious code in bioql PyPI...
EUVD-2022-6099
Malicious code in bioql PyPI...
EUVD-2022-5917
Malicious code in bioql PyPI...
EUVD-2022-4990
Malicious code in bioql PyPI...
EUVD-2022-5980
Malicious code in bioql PyPI...
EUVD-2022-6196
Malicious code in bioql PyPI...
EUVD-2022-5941
Malicious code in bioql PyPI...
EUVD-2022-5689
Malicious code in bioql PyPI...
EUVD-2022-2942
Malicious code in bioql PyPI...
EUVD-2022-2963
Malicious code in bioql PyPI...
EUVD-2022-6059
Malicious code in bioql PyPI...
CVE-2024-50592
An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process. When using the repair function, the service queries the server for a lis...
CVE-2024-50591
An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. The command injection can be exploited by communicating with the Elefant Update Service whi...
CVE-2024-50590
Attackers with local access to the medical office computer can escalate their Windows user privileges to "NT AUTHORITY\SYSTEM" by overwriting one of two Elefant service binaries with weak permissions. The default installation directory of Elefant is "C:\Elefant1" which is writable for all users. ...
CVE-2024-50593
An attacker with local access to the medical office computer can access restricted functions of the Elefant Service tool by using a hard-coded "Hotline" password in the Elefant service binary, which is shipped with the software...
CVE-2012-6521
Cross-site scripting XSS vulnerability in apps/admin/handlers/versions.php in Elefant CMS 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter to admin/versions...
CVE-2017-20063
A vulnerability was found in Elefant CMS 1.3.12-RC. It has been classified as critical. Affected is an unknown function of the file /filemanager/upload/drop of the component File Upload. The manipulation leads to improper privilege management. It is possible to launch the attack remotely. Upgradi...