265 matches found
EUVD-2012-0007
Malware in sbrugna...
EUVD-2022-1853
Malicious code in bioql PyPI...
EUVD-2022-1640
Malicious code in bioql PyPI...
EUVD-2022-1819
Malicious code in bioql PyPI...
EUVD-2025-4088
Malicious code in bioql PyPI...
EUVD-2022-2876
Malicious code in bioql PyPI...
EUVD-2025-18986
Malicious code in bioql PyPI...
EUVD-2024-16924
Malicious code in bioql PyPI...
EUVD-2022-1597
Malicious code in bioql PyPI...
EUVD-2024-0647
Malicious code in bioql PyPI...
EUVD-2022-5873
Malicious code in bioql PyPI...
EUVD-2023-0736
Malicious code in bioql PyPI...
EUVD-2022-1690
Malicious code in bioql PyPI...
EUVD-2021-34257
Malicious code in bioql PyPI...
CVE-2025-48042
Incorrect Authorization vulnerability in ash-project ash allows Exploiting Incorrectly Configured Access Control Security Levels. This vulnerability is associated with program files lib/ash/actions/create/bulk.ex, lib/ash/actions/destroy/bulk.ex, lib/ash/actions/update/bulk.ex and program routine...
CVE-2025-48042
Incorrect Authorization vulnerability in ash-project ash allows Exploiting Incorrectly Configured Access Control Security Levels. This vulnerability is associated with program files lib/ash/actions/create/bulk.ex, lib/ash/actions/destroy/bulk.ex, lib/ash/actions/update/bulk.ex and program routine...
PT-2025-36416
Name of the Vulnerable Software and Affected Versions: ash versions prior to 3.5.39 Description: An incorrect authorization vulnerability exists in ash, allowing exploitation of incorrectly configured access control security levels. This issue is associated with program files...
CVE-2024-25718
In the Samly package before 1.4.0 for Elixir, Samly.State.Store.getassertion/3 can return an expired session, which interferes with access control because Samly.AuthHandler uses a cached session and does not replace it, even after expiry...
CVE-2021-32851
Mind-elixir is a free, open source mind map core. Prior to version 0.18.1, mind-elixir is prone to cross-site scripting when handling untrusted menus. This issue is patched in version 0.18.1...
CVE-2020-29575
The official elixir Docker images before 1.8.0-alpine Alpine specific contain a blank password for a root user. Systems using the elixir Linux Docker container deployed by affected versions of the Docker image may allow a remote attacker to achieve root access with a blank password...