6 matches found
EUVD-2025-19545
Malicious code in bioql PyPI...
CVE-2025-52918
Yealink RPS before 2025-05-26 does not prevent OpenAPI access by frozen enterprise accounts, allowing unauthorized access to deactivated interfaces...
CVE-2025-52918
Yealink RPS before 2025-05-26 does not prevent OpenAPI access by frozen enterprise accounts, allowing unauthorized access to deactivated interfaces...
CVE-2025-52918
Yealink RPS before 2025-05-26 does not prevent OpenAPI access by frozen enterprise accounts, allowing unauthorized access to deactivated interfaces...
Yealink YMCS 安全漏洞
Yealink YMCS is a cloud management service from China Yealink Yealink used to centrally manage and maintain Yealink's devices. A security vulnerability exists in Yealink YMCS versions prior to 2025-05-26, which stems from not blocking access to OpenAPI for frozen enterprise accounts, which could...
PayPal Addresses Months-Old SQL Injection Vulnerability, Frozen Accounts
Researchers with Vulnerability Lab today announced mega payment processor PayPal has fixed a flaw on its site that allowed a remote user or a local user with low privileges to compromise a Web application using a blind SQL injection. The vulnerability was first reported to PayPal back in August,...