47 matches found
CVE-2021-27914
A cross-site scripting XSS vulnerability in the installer component of Mautic before 4.3.0 allows admins to inject executable javascript...
EUVD-2017-5352
Malware in sbrugna...
EUVD-2017-11033
Malware in sbrugna...
EUVD-2025-16270
Malicious code in bioql PyPI...
EUVD-2025-20012
Malicious code in bioql PyPI...
CVE-2025-10941
A vulnerability was determined in Topaz SERVCore Teller 2.14.0-RC2/2.14.1. Affected by this issue is some unknown functionality of the file SERVCoreTeller2.0.40D.msi of the component Installer. Executing manipulation can lead to permission issues. The attack needs to be launched locally. You shou...
CVE-2025-7060
A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...
CVE-2025-5180
CVE-2025-5180 affects Wondershare Filmora 14.5.16. The issue is in the Installer component, specifically the NFWCHK.exe’s interaction with the CRYPTBASE.dll library, which enables an uncontrolled search path. This allows a local attacker to exploit the vulnerability, with attack complexity descri...
CVE-2017-20018
A vulnerability was found in XAMPP 7.1.1-0-VC14. It has been classified as problematic. Affected is an unknown function of the component Installer. The manipulation leads to privilege escalation. It is possible to launch the attack remotely...
CVE-2024-0832
In Telerik Reporting versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Reporting install is present, a lower privileged user has the ability to manipulate the installation package...
Epic Games Launcher 代码问题漏洞
Epic Games Launcher is a game software launcher from Epic Games USA. A code issue vulnerability exists in Epic Games Launcher version 17.2.1 and earlier, which stems from code in the profapi.dll library in the component Installer that can lead to untrusted search paths...
PT-2024-9205 · Mcafee · Mcafee Total Protection
Name of the Vulnerable Software and Affected Versions: McAfee Total Protection versions 16.0.53 Description: The issue is related to an Uncontrolled Search Path Element in the McAfee Direct Stub Installer, which can allow an attacker to elevate their privileges and execute arbitrary code. This ca...
CVE-2024-0833
In Telerik Test Studio versions prior to v2023.3.1330, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Test Studio install is present, a lower privileged user has the ability to manipulate the installatio...
CVE-2024-0219
In Telerik JustDecompile versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik JustDecompile install is present, a lower privileged user has the ability to manipulate the installation...
CVE-2024-0219
In Telerik JustDecompile versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik JustDecompile install is present, a lower privileged user has the ability to manipulate the installation...
CVE-2024-0833
Affected software : Telerik Test Studio (installer component) prior to v2023.3.1330. Vulnerability : privilege elevation where a lower-privileged user can manipulate the installation package in environments with an existing Test Studio install to gain elevated OS privileges. Impact :, as per CVSS...
CVE-2024-0833 Privilege Elevation via Telerik Test Studio
In Telerik Test Studio versions prior to v2023.3.1330, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Test Studio install is present, a lower privileged user has the ability to manipulate the installatio...
CVE-2024-0832 Privilege Elevation via Telerik Reporting Installer
In Telerik Reporting versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Reporting install is present, a lower privileged user has the ability to manipulate the installation package...
PT-2024-15852 · Telerik · Telerik Test Studio
Name of the Vulnerable Software and Affected Versions: Telerik Test Studio versions prior to v2023.3.1330 Description: A privilege elevation vulnerability has been identified in the application's installer component. In an environment where an existing Telerik Test Studio install is present, a...
PT-2024-15851 · Telerik · Telerik Reporting
Name of the Vulnerable Software and Affected Versions: Telerik Reporting versions prior to 2024 R1 Description: A privilege elevation vulnerability has been identified in the application's installer component. In an environment where an existing Telerik Reporting install is present, a lower...