154 matches found
Usta Aybs Interaktif 安全漏洞
Usta Aybs Interaktif is an Enterprise Resource Planning ERP management platform from Usta Turkey. A security vulnerability exists in Usta Aybs Interaktif versions 2024 through 28082025, which stems from authorization bypass and missing authorization, and could lead to forceful browsing, parameter...
PT-2025-41566
Name of the Vulnerable Software and Affected Versions Usta Information Systems Inc. Aybs Interaktif versions 2024 through 28082025 Description An authorization bypass exists in Usta Information Systems Inc. Aybs Interaktif due to user-controlled keys, missing authorization checks, and exposure of...
Security update for python-xmltodict
This update for python-xmltodict fixes the following issues: CVE-2025-9375: XML injection vulnerability in xmltodict allows input data manipulation bsc1249036. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
EUVD-2025-26350
Malicious code in bioql PyPI...
EUVD-2025-16131
Malicious code in bioql PyPI...
EUVD-2021-9647
Malicious code in bioql PyPI...
EUVD-2024-26952
Malicious code in bioql PyPI...
EUVD-2025-16130
Malicious code in bioql PyPI...
EUVD-2025-16126
Malicious code in bioql PyPI...
EUVD-2025-21064
Malicious code in bioql PyPI...
EUVD-2024-26951
Malicious code in bioql PyPI...
EUVD-2024-54515
Malicious code in bioql PyPI...
EUVD-2025-21065
Malicious code in bioql PyPI...
EUVD-2025-16125
Malicious code in bioql PyPI...
EUVD-2025-25403
Malicious code in bioql PyPI...
EUVD-2025-25405
Malicious code in bioql PyPI...
OESA-2025-2336 python-xmltodict security update
Python module that makes working with XML feel like you are working with JSON Security Fixes: XML Injection vulnerability in xmltodict allows Input Data Manipulation.This issue affects xmltodict: 0.14.2.CVE-2025-9375...
CVE-2025-8276
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting', Improper Encoding or Escaping of Output, Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Patika Global Technologies HumanSuite allows...
CVE-2025-8276 HTML Injection in Patika Global Technologies' HumanSuite
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting', Improper Encoding or Escaping of Output, Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Patika Global Technologies HumanSuite allows...
PT-2025-37992
Name of the Vulnerable Software and Affected Versions HumanSuite versions prior to 53.21.0 Description HumanSuite is susceptible to multiple issues including improper encoding or escaping of output, improper neutralization of special elements in output used by a downstream component injection,...