316 matches found
EUVD-2024-1369
Malicious code in bioql PyPI...
EUVD-2025-12227
Malicious code in bioql PyPI...
EUVD-2023-0182
Malicious code in bioql PyPI...
EUVD-2024-0120
Malicious code in bioql PyPI...
EUVD-2025-27483
Malicious code in bioql PyPI...
EUVD-2024-0121
Malicious code in bioql PyPI...
EUVD-2022-0172
Malicious code in bioql PyPI...
EUVD-2022-0178
Malicious code in bioql PyPI...
EUVD-2024-0122
Malicious code in bioql PyPI...
EUVD-2022-0174
Malicious code in bioql PyPI...
EUVD-2022-0176
Malicious code in bioql PyPI...
EUVD-2024-0123
Malicious code in bioql PyPI...
EUVD-2025-17715
Malicious code in bioql PyPI...
EUVD-2025-17675
Malicious code in bioql PyPI...
EUVD-2022-0175
Malicious code in bioql PyPI...
CVE-2025-58180
OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.11.2 contain a vulnerability that allows an authenticated attacker to upload a file under a specially crafted filename that will allow arbitrary command execution if said filename...
CVE-2025-58180
OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.11.2 contain a vulnerability that allows an authenticated attacker to upload a file under a specially crafted filename that will allow arbitrary command execution if said filename...
Command Injection
Overview OctoPrint is a snappy web interface for your 3D printer Affected versions of this package are vulnerable to Command Injection due to upload file when a specially crafted filename is included in a command defined in a system event handler and the corresponding event is triggered. An...
CVE-2025-58180 OctoPrint is Vulnerable to RCE Attacks via Unsanitized Filename in File Upload
OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.11.2 contain a vulnerability that allows an authenticated attacker to upload a file under a specially crafted filename that will allow arbitrary command execution if said filename...
CVE-2025-58180
CVE-2025-58180 affects OctoPrint ≤ 1.11.2. An authenticated attacker able to upload files can craft a filename that, when interpolated into a system event handler command, leads to arbitrary command execution on the host via a FileAdded event. The vulnerability relies on insufficient sanitization...