393 matches found
EUVD-2025-26637
Malicious code in bioql PyPI...
EUVD-2021-9896
Malicious code in bioql PyPI...
EUVD-2024-51060
Malicious code in bioql PyPI...
EUVD-2024-54837
Malicious code in bioql PyPI...
EUVD-2025-24871
Malicious code in bioql PyPI...
CVE-2025-9365
Fuji Electric FRENIC-Loader 4 is vulnerable to a deserialization of untrusted data when importing a file through a specified window, which may allow an attacker to execute arbitrary code...
Fuji Electric FRENIC-Loader 4 Deserialization Vulnerability
Fuji Electric FRENIC-Loader 4 is a computer software designed for Fuji Electric inverters such as the FRENIC series, mainly for parameter setting, monitoring and debugging. A deserialization vulnerability exists in Fuji Electric FRENIC-Loader 4, which can be exploited by an attacker to execute...
CVE-2025-9365
Fuji Electric FRENIC-Loader 4 is vulnerable to a deserialization of untrusted data when importing a file through a specified window, which may allow an attacker to execute arbitrary code...
CVE-2025-9365
Fuji Electric FRENIC-Loader 4 is vulnerable to unsafe deserialization of user-submitted serialized data when importing a file via a specific window, which may allow arbitrary code execution. Affected product: Fuji Electric FRENIC-Loader 4 (inverters). Root cause: deserialization of untrusted data...
PT-2025-35828
Name of the Vulnerable Software and Affected Versions Fuji Electric FRENIC-Loader 4 affected versions not specified Description Fuji Electric FRENIC-Loader 4 is susceptible to deserialization of untrusted data when importing a file through a specified window. This may allow an attacker to execute...
Linux Distros Unpatched Vulnerability : CVE-2025-50817
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the Python-Future 1.0.0 module allows for arbitrary code execution via the unintended import of a file named test.py. When the module is...
PT-2025-33488 · Autodesk · Autocad
Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD affected versions not specified Description: A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can lead to a memory corruption issue. A malicious actor can potentially leverage this issue to execu...
CVE-2025-50817
A vulnerability in the Python-Future 1.0.0 module allows for arbitrary code execution via the unintended import of a file named test.py. When the module is loaded, it automatically imports test.py, if present in the same directory or in the sys.path. This behavior can be exploited by an attacker...
PT-2025-33349
Name of the Vulnerable Software and Affected Versions: Python-Future version 1.0.0 Description: A vulnerability in the Python-Future module allows for arbitrary code execution via the unintended import of a file named test.py. When the module is loaded, it automatically imports test.py, if presen...
CVE-2024-45515
An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...
CVE-2024-45515
An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...
CVE-2024-45515
An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...
CVE-2024-45515
An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...
Zimbra Collaboration 安全漏洞
Zimbra Collaboration is an open source enterprise-class email and collaboration platform from Zimbra, Inc. that supports email, calendaring, document management, and team collaboration features. A security vulnerability exists in Zimbra Collaboration 10.1 and prior versions, which stems from...
CVE-2024-45515
CVE-2024-45515 affects Zimbra Collaboration (ZCS) up to 10.1.x, with an XSS vulnerability in Zimbra webmail caused by insufficient validation of the content-type metadata when importing files into the briefcase. The underlying issue is improper validation of metadata during file import, allowing ...