CVE-2025-15132

A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-15131

A vulnerability was found in ZSPACE Z4Pro+ 1.0.0440024. Impacted is the function zfilev2apiSafeStatus of the file /v2/file/safe/status of the component HTTP POST Request Handler. The manipulation results in command injection. The attack may be performed from remote. The exploit has been made publ...

EUVD-2025-205504

A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...

EUVD-2025-205507

A vulnerability was identified in ZSPACE Z4Pro+ 1.0.0440024. The impacted element is the function zfilev2apiCloseSafe of the file /v2/file/safe/close of the component HTTP POST Request Handler. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit...

CVE-2025-15132 ZSPACE Z4Pro+ HTTP POST Request open zfilev2_api_open command injection

A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990756)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990756 advisory. In the Linux kernel, the following vulnerability has been resolved: kprobes: Skip clearing aggrprobe's posthandler in kprobe-on-ftrace case In unregisterkprobetop, i...

EUVD-2025-16583

Malicious code in bioql PyPI...

EUVD-2025-1896

Malicious code in bioql PyPI...

EUVD-2022-55362

Malicious code in bioql PyPI...

EUVD-2023-59321

Malicious code in bioql PyPI...

EUVD-2025-18473

Malicious code in bioql PyPI...

EUVD-2023-33836

Malicious code in bioql PyPI...

EUVD-2022-52211

Malicious code in bioql PyPI...

EUVD-2025-21213

Malicious code in bioql PyPI...

EUVD-2025-28712

Malicious code in bioql PyPI...

EUVD-2024-48959

Malicious code in bioql PyPI...

EUVD-2023-58804

Malicious code in bioql PyPI...

PT-2025-39790

Name of the Vulnerable Software and Affected Versions itsourcecode Hostel Management System version 1.0 Description A security flaw exists in itsourcecode Hostel Management System 1.0. The issue is related to a cross-site scripting condition within the POST Request Handler component, specifically...

CVE-2025-10803

A vulnerability has been found in Tenda AC23 up to 16.03.07.52. Affected by this vulnerability is the function sscanf of the file /goform/SetPptpServerCfg of the component HTTP POST Request Handler. Such manipulation of the argument startIp leads to buffer overflow. It is possible to launch the...

CVE-2025-10758 htmly Custom Field post cross site scripting

A security vulnerability has been detected in htmly up to 3.1.0. The impacted element is an unknown function of the file /htmly/admin/field/post of the component Custom Field Handler. Such manipulation of the argument label leads to cross site scripting. The attack can be launched remotely. The...