261 matches found
EUVD-2017-8597
Malware in sbrugna...
EUVD-2007-2532
Malware in sbrugna...
EUVD-2024-54644
Malicious code in bioql PyPI...
EUVD-2025-9030
Malicious code in bioql PyPI...
EUVD-2024-45958
Malicious code in bioql PyPI...
EUVD-2025-23610
Malicious code in bioql PyPI...
EUVD-2025-13488
Malicious code in bioql PyPI...
EUVD-2022-1104
Malicious code in bioql PyPI...
EUVD-2021-7741
Malicious code in bioql PyPI...
EUVD-2022-3471
Malicious code in bioql PyPI...
EUVD-2021-32188
Malicious code in bioql PyPI...
CVE-2025-7050 Use-your-Drive | Google Drive plugin for WordPress <= 3.3.1- Unauthenticated Stored Cross-Site Scripting via File Metadata
The Use-your-Drive | Google Drive plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' parameter in file metadata in all versions up to, and including, 3.3.1 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-7050 Use-your-Drive | Google Drive plugin for WordPress <= 3.3.1- Unauthenticated Stored Cross-Site Scripting via File Metadata
The Use-your-Drive | Google Drive plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' parameter in file metadata in all versions up to, and including, 3.3.1 due to insufficient input sanitization and output escaping. This makes it possible for...
PT-2025-31907 · WordPress · Use-Your-Drive | Google Drive
Name of the Vulnerable Software and Affected Versions: Use-your-Drive | Google Drive plugin for WordPress versions prior to 3.3.2 Description: The Use-your-Drive | Google Drive plugin for WordPress is susceptible to Stored Cross-Site Scripting via the title parameter in file metadata. Insufficien...
Linux Distros Unpatched Vulnerability : CVE-2024-12718
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Allows modifying some file metadata e.g. last modified with filter=data or file permissions chmod with filter=tar of files outside the extraction directory. You...
CBL Mariner 2.0 Security Update: python3 (CVE-2025-4138)
The version of python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4138 advisory. - Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination...
CBL Mariner 2.0 Security Update: python3 (CVE-2024-12718)
The version of python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12718 advisory. - Allows modifying some file metadata e.g. last modified with filter=data or file permissions chmod with...
K000152599: Python tarfile vulnerability CVE-2024-12718
Security Advisory Description Allows modifying some file metadata e.g. last modified with filter="data" or file permissions chmod with filter="tar" of files outside the extraction directory. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using...
SUSE SLES12 Security Update : python36 (SUSE-SU-2025:02297-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02297-1 advisory. - CVE-2024-12718: Fixed extraction filter bypass that allowed file metadata modification outside extraction directory bsc1244056 -...
Bypass extraction filter to modify file metadata outside extraction directory
...