EUVD-2023-30369

Malicious code in bioql PyPI...

EUVD-2023-30364

Malicious code in bioql PyPI...

EUVD-2023-31032

Malicious code in bioql PyPI...

EUVD-2023-31033

Malicious code in bioql PyPI...

EUVD-2023-31039

Malicious code in bioql PyPI...

EUVD-2023-30374

Malicious code in bioql PyPI...

EUVD-2023-30373

Malicious code in bioql PyPI...

EUVD-2023-30375

Malicious code in bioql PyPI...

EUVD-2023-31152

Malicious code in bioql PyPI...

EUVD-2023-30379

Malicious code in bioql PyPI...

EUVD-2023-30363

Malicious code in bioql PyPI...

EUVD-2023-30376

Malicious code in bioql PyPI...

EUVD-2023-31034

Malicious code in bioql PyPI...

EUVD-2023-31035

Malicious code in bioql PyPI...

EUVD-2023-30366

Malicious code in bioql PyPI...

CVE-2023-26578

Arbitrary file upload to web root in the IDAttend’s IDWeb application 3.1.013 allows authenticated attackers to upload dangerous files to web root such as ASP or ASPX, gaining command execution on the affected server...

CVE-2023-26582

Unauthenticated SQL injection in the GetExcursionDetails method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...

CVE-2023-26568

Unauthenticated SQL injection in the GetStudentGroupStudents method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...

CVE-2023-26577

Stored cross-site scripting in the IDAttend’s IDWeb application 3.1.052 and earlier allows attackers to hijack the browsing session of the logged in user...

CVE-2023-26580

Unauthenticated arbitrary file read in the IDAttend’s IDWeb application 3.1.013 allows the retrieval of any file present on the web server by unauthenticated attackers...