479 matches found
EUVD-2024-36135
Malicious code in bioql PyPI...
EUVD-2023-29548
Malicious code in bioql PyPI...
EUVD-2022-30687
Malicious code in bioql PyPI...
EUVD-2022-36914
Malicious code in bioql PyPI...
EUVD-2023-29544
Malicious code in bioql PyPI...
EUVD-2023-32778
Malicious code in bioql PyPI...
EUVD-2023-55003
Malicious code in bioql PyPI...
CVE-2025-49813
An improper neutralization of special elements used in an OS Command "OS Command Injection" vulnerability CWE-78 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters...
Vulnerabilities fixed in Fortinet products
Fortinet has fixed vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSIEM, FortiWeb and FortiADC. The most serious vulnerability allows an unauthenticated attacker to remotely execute arbitrary code on FortiSIEM using custom CLI commands. Forti indicates that PoC code is available for this...
CVE-2025-49813
An improper neutralization of special elements used in an OS Command "OS Command Injection" vulnerability CWE-78 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters...
CVE-2025-49813
An improper neutralization of special elements used in an OS Command "OS Command Injection" vulnerability CWE-78 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters...
CVE-2025-49813
CVE-2025-49813 describes an OS Command Injection in Fortinet FortiADC. The vulnerability arises from improper neutralization of special elements in OS commands, affecting FortiADC versions 7.2.0 and earlier than 7.1.1. An authenticated, low-privilege remote attacker can craft HTTP parameters to e...
CVE-2025-49813
An improper neutralization of special elements used in an OS Command "OS Command Injection" vulnerability CWE-78 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters...
CVE-2025-49813
An improper neutralization of special elements used in an OS Command "OS Command Injection" vulnerability CWE-78 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters...
CVE-2025-49813
An improper neutralization of special elements used in an OS Command "OS Command Injection" vulnerability CWE-78 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters...
PT-2025-32882 · Fortinet · Fortiadc
Name of the Vulnerable Software and Affected Versions: Fortinet FortiADC versions 7.2.0 and prior to 7.1.1 Description: An improper neutralization of special elements used in an OS Command Injection vulnerability allows a remote and authenticated attacker with low privilege to execute unauthorize...
Fortinet FortiADC 操作系统命令注入漏洞
Fortinet FortiADC is an application delivery controller from Fortinet, Inc. An operating system command injection vulnerability exists in Fortinet FortiADC version 7.2.0 and versions prior to 7.1.1, which stems from OS command injection and could lead to the execution of unauthorized code...
CVE-2025-31104
An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability CWE-78 in FortiADC 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2.0 through 7.2.7, 7.1.0 through 7.1.4, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated attacker...
CVE-2025-31104
An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability CWE-78 in FortiADC 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2.0 through 7.2.7, 7.1.0 through 7.1.4, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated attacker...
CVE-2025-31104
An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability CWE-78 in FortiADC 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2.0 through 7.2.7, 7.1.0 through 7.1.4, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated attacker...