174 matches found
PT-2026-32555
SAP Landscape Transformation contains a vulnerability in an RFC-exposed function module that could allow a high privileged adversary to inject arbitrary ABAP code and operating system commands. Due to this, some information could be modified, but the attacker does not have control over kind or...
CVE-2025-40841
Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Request Forgery CSRF vulnerability which, if exploited, can lead to unauthorized modification of certain information...
CVE-2025-27260
Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains an Improper Filtering of Special Elements vulnerability which, if exploited, can lead to unauthorized modification of certain information...
CVE-2025-40842
Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Scripting XSS vulnerability which, if exploited, can lead to unauthorized disclosure and modification of certain information...
CVE-2025-27260
Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains an Improper Filtering of Special Elements vulnerability which, if exploited, can lead to unauthorized modification of certain information...
PT-2026-27765
Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Scripting XSS vulnerability which, if exploited, can lead to unauthorized disclosure and modification of certain information...
CVE-2022-27958
Insecure permissions configured in the userid parameter at /user/getuserprofile of FEBS-Security v1.0 allows attackers to access and arbitrarily modify users' personal information...
MAL-2025-171893 Malicious code in sophiacampbell (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4d4af2b2e8cc5335a59b0ddd93ed75655ed614f5759d9d4b1ed3beeabf744ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-42884
SAP NetWeaver Enterprise Portal allows an unauthenticated attacker to inject JNDI environment properties or pass a URL used during JNDI lookup operations, enabling access to an unintended JNDI provider.�This could further lead to disclosure or modification of information about the server. There i...
Malicious code in fauzi-mangga37-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77997fd7e83fe8dfe554d8d6dd68c021b9bfba6539dd090e0ad455f4ec5366bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-42884 JNDI Injection vulnerability in SAP NetWeaver Enterprise Portal
SAP NetWeaver Enterprise Portal allows an unauthenticated attacker to inject JNDI environment properties or pass a URL used during JNDI lookup operations, enabling access to an unintended JNDI provider.�This could further lead to disclosure or modification of information about the server. There i...
EUVD-2019-13394
Malware in sbrugna...
EUVD-2021-14889
Malware in sbrugna...
EUVD-2020-19404
Malware in sbrugna...
EUVD-2020-10340
Malware in sbrugna...
EUVD-2019-8645
Malware in sbrugna...
EUVD-2016-6873
Malware in sbrugna...
EUVD-2001-1555
Malware in sbrugna...
EUVD-2001-0822
Malware in sbrugna...
EUVD-2019-13994
Malware in sbrugna...