248 matches found
EVE-NG 安全漏洞
EVE-NG is a clientless multi-vendor network emulation software from EVE-NG, Inc. A security vulnerability exists in EVE-NG version 6.4.0-13-PRO, which originates from directory traversal in the /api/export interface and could lead to the export of arbitrary files...
PT-2025-51367
Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A broken access control issue was identified in Keycloak’s admin API endpoints related to authorization resource management, specifically within the ResourceSetService and...
CVE-2025-14126
A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the publi...
PT-2025-49359
Name of the Vulnerable Software and Affected Versions TOZED ZLT M30S versions 1.47 and 3.09.06 TOZED ZLT M30S PRO versions 1.47 and 3.09.06 Description A security issue exists in TOZED ZLT M30S and ZLT M30S PRO devices. The issue involves hard-coded credentials within an unknown function of the W...
HPE Aruba Networking AOS-CX 安全漏洞
HPE Aruba Networking AOS-CX is a series of switch devices from HPE America. A security vulnerability exists in the HPE Aruba Networking AOS-CX that stems from improper access control of the web-based management interface, which could lead to the disclosure of sensitive information...
CVE-2025-20305
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrato...
CVE-2025-20289
Multiple vulnerabilities in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...
CVE-2025-20377 Cisco Unified Intelligence Center API Information Disclosure Vulnerability
A vulnerability in the API subsystem of Cisco Unified Intelligence Center could allow an authenticated, remote attacker to obtain sensitive information from an affected system. This vulnerability is due to improper validation of requests to certain API endpoints. An attacker could exploit this...
CVE-2025-63422
Incorrect access control in the Web management interface in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to arbitrarily change the administrator username and password via sending a crafted GET request...
Nagios XI 安全漏洞
Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A security vulnerability exists in Nagios XI CCM versions prior to 3.1.6 and Nagios XI version 5.8.8, which...
EUVD-2007-0721
Malware in sbrugna...
EUVD-2019-9580
Malware in sbrugna...
EUVD-2017-6584
Malware in sbrugna...
EUVD-2014-0680
Malware in sbrugna...
EUVD-2000-0753
Malware in sbrugna...
EUVD-2023-46580
Malicious code in bioql PyPI...
EUVD-2023-53350
Malicious code in bioql PyPI...
EUVD-2025-12184
Malicious code in bioql PyPI...
EUVD-2025-24680
Malicious code in bioql PyPI...
EUVD-2024-17194
Malicious code in bioql PyPI...