4 matches found
EUVD-2025-27850
Malicious code in bioql PyPI...
CVE-2025-35113 Agiloft improper neutralization in EUI template engine
Agiloft Release 28 does not properly neutralize special elements used in an EUI template engine, allowing an authenticated attacker to achieve remote code execution by loading a specially crafted payload. Users should upgrade to Agiloft Release 31...
PT-2025-34815 · Agiloft · Agiloft
Name of the Vulnerable Software and Affected Versions: Agiloft versions prior to 30 Description: Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could...
Agiloft 安全漏洞
Agiloft is a contract management platform from Agiloft Corporation, USA. A security vulnerability exists in Agiloft Release 28 that stems from improper handling of special elements in the EUI template engine, which could lead to remote code execution...