433 matches found
EUVD-2023-1315
Malicious code in bioql PyPI...
EUVD-2022-1245
Malicious code in bioql PyPI...
EUVD-2023-1094
Malicious code in bioql PyPI...
EUVD-2022-43601
Malicious code in bioql PyPI...
EUVD-2023-1650
Malicious code in bioql PyPI...
CVE-2025-10868 Business Logic Errors in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 17.4 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1 where certain string conversion methods exhibit performance degradation with large inputs...
GitLab 17.4 < 18.2.7 / 18.3 < 18.3.3 / 18.4 < 18.4.1 (CVE-2025-10868)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Business Logic Errors in GitLab CVE-2025-10868 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...
Google Android elevation of privilege vulnerability (CNVD-2025-23046)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by background activity that may be initiated as a result of logic errors in multiple functions of LocationProviderManager.java. An attacker...
Google Android Information Disclosure Vulnerability (CNVD-2025-24499)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from a letter disclosure vulnerability, which is caused by a logic error in multiple locations. An attacker can exploit the vulnerability to potentially cause a local information leak...
Google Android elevation of privilege vulnerability (CNVD-2026-00036)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused by a logic error in the code at multiple locations. The vulnerability can be exploited by an attacker to gain elevated privileges on the...
Google Android elevation of privilege vulnerability (CNVD-2026-10643)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from a logic error vulnerability, which is caused by a code logic error in multiple functions. An attacker can exploit the vulnerability to cause a local elevation of privilege...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from a letter disclosure vulnerability, which is caused by a logic error in multiple locations. An attacker can exploit the vulnerability to potentially cause a local information leak...
Google Android elevation of privilege vulnerability (CNVD-2025-19982)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused due to logic error code in multiple locations. The vulnerability can be exploited by an attacker to gain elevated privileges on the system...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused due to logic error code in multiple locations. The vulnerability can be exploited by an attacker to gain elevated privileges on the system...
CVE-2025-8991
CVE-2025-8991 affects linlinjava litemall versions up to 1.8.0. The vulnerability resides in the Business Logic Handler’s /admin/config/express, where manipulating the litemall_express_freight_min parameter triggers business logic errors. The issue is exploitable remotely and publicized. PT-2025-...
PT-2025-33423 · Linlinjava · Litemall
Name of the Vulnerable Software and Affected Versions: linlinjava litemall versions up to 1.8.0 Description: A vulnerability was identified in linlinjava litemall. The issue affects an unknown functionality within the /admin/config/express file of the Business Logic Handler component. Manipulatio...
The vulnerability of the web interface of the information system for state and municipal payments in the Republic of Tatarstan (GIS GMPl) stems from errors in the logic of the web application’s operation. This vulnerability allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the web interface of the information system for state and municipal payments in the Republic of Tatarstan GIS GMPl is related to errors in the logic of the web application’s operation. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthoriz...
BIT-GITLAB-2025-2938 Business Logic Errors in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to gain elevated project privileges by requesting access to projects where role modifications during the approval...
CVE-2025-2938 Business Logic Errors in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to gain elevated project privileges by requesting access to projects where role modifications during the approval...
CVE-2025-2938
The CVE-2025-2938 entry concerns GitLab CE/EE (versions 17.3–17.11.4, 18.0–18.0.2, and 18.1–18.1.0) where authenticated users could gain elevated project privileges by requesting access to projects during an approval workflow, due to role modifications that yielded unintended permission grants. T...