175 matches found
IBM Concert 安全漏洞
IBM Concert is a generative artificial intelligence-driven automated application management and monitoring tool based on the watsonx platform released in May 2024 by IBM. IBM Concert suffers from an improper output neutralization vulnerability that can be exploited by an attacker to cause a forge...
Siemens SIMATIC S7-1500 Improper Neutralization of Special Elements in Output Used by a Downstream Component (CVE-2020-8177)
curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...
EUVD-2025-37927
A reflected cross-site scripting XSS vulnerability exists in the management console of multiple WSO2 products due to improper output encoding. By tampering with specific parameters, a malicious actor can inject arbitrary JavaScript into the response, leading to reflected XSS. Successful...
CVE-2025-10853
Summary: CVE-2025-10853 is a reflected XSS vulnerability in the management console of multiple WSO2 products caused by improper output encoding. The issue allows a malicious actor to tamper with specific parameters to inject arbitrary JavaScript into responses, potentially leading to UI manipulat...
CVE-2025-62697
Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in The Wikimedia Foundation Mediawiki - LanguageSelector Extension allows Code Injection.This issue affects Mediawiki - LanguageSelector Extension: from master before 1.39...
UBUNTU-CVE-2025-62697
Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in The Wikimedia Foundation Mediawiki - LanguageSelector Extension allows Code Injection.This issue affects Mediawiki - LanguageSelector Extension: from master before 1.39...
EUVD-2019-3218
Malware in sbrugna...
EUVD-2015-1029
Malware in sbrugna...
EUVD-2022-51392
Malicious code in bioql PyPI...
EUVD-2022-5861
Malicious code in bioql PyPI...
EUVD-2025-25621
Malicious code in bioql PyPI...
EUVD-2024-16764
Malicious code in bioql PyPI...
EUVD-2023-3289
Malicious code in bioql PyPI...
EUVD-2024-49592
Malicious code in bioql PyPI...
EUVD-2024-49101
Malicious code in bioql PyPI...
RLSA-2025:14592 Important: aide security update
Advanced Intrusion Detection Environment AIDE is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions. Security Fixes: aide: improper output neutralization enables bypassing CVE-2025-54389 For more details abou...
SUSE-SU-2025:20754-1 Security update for aide
This update for aide fixes the following issues: - CVE-2025-54389: Fixed improper output neutralization bsc1247884 - CVE-2025-54409: Fixed null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885...
Security update for aide
This update for aide fixes the following issues: CVE-2025-54389: Fixed improper output neutralization bsc1247884 CVE-2025-54409: Fixed null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885 Patch Instructions: To install this SUSE update use the SUSE...
Important: Red Hat Security Advisory: aide security update
An update for aide is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
RHEL 7 : aide (RHSA-2025:15728)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:15728 advisory. Advanced Intrusion Detection Environment AIDE is a utility that creates a database of files on the system, and then uses that database to ensure fil...