CVE-2025-1782

In HylaFAX Enterprise Web Interface and AvantFAX, the language form element is not properly sanitized before being used and can be misused to include an arbitrary file in the PHP code allowing an attacker to do anything as the web server user. This flaw requires the attacker to be authenticated...

CVE-1999-0262

Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string...

EUVD-2004-1179

Malware in sbrugna...

EUVD-2001-0384

Malware in sbrugna...

EUVD-2018-8919

Malware in sbrugna...

EUVD-1999-1321

Malware in sbrugna...

EUVD-2001-1015

Malware in sbrugna...

EUVD-2020-7391

Malware in sbrugna...

EUVD-2005-3070

Malware in sbrugna...

EUVD-2020-7390

Malware in sbrugna...

EUVD-1999-0262

Malware in sbrugna...

EUVD-2020-28936

Malware in sbrugna...

EUVD-2003-0876

Malware in sbrugna...

EUVD-2002-1038

Malware in sbrugna...

EUVD-2005-3537

Malware in sbrugna...

EUVD-2002-1039

Malware in sbrugna...

EUVD-2005-3069

Malware in sbrugna...

EUVD-2020-4108

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-8024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Incorrect Default Permissions vulnerability in the packaging of hylafax+ of openSUSE Leap 15.2, openSUSE Leap 15.1, openSUSE Factory allows local attackers to...

Linux Distros Unpatched Vulnerability : CVE-2020-15396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. By winning a race, a local attacker could...