2293 matches found
EUVD-2022-40813
Malicious code in bioql PyPI...
EUVD-2022-48303
Malicious code in bioql PyPI...
EUVD-2024-1521
Malicious code in bioql PyPI...
EUVD-2021-28625
Malicious code in bioql PyPI...
EUVD-2021-9128
Malicious code in bioql PyPI...
EUVD-2019-4121
Malicious code in bioql PyPI...
EUVD-2022-5878
Malicious code in bioql PyPI...
EUVD-2024-54293
Malicious code in bioql PyPI...
EUVD-2023-50529
Malicious code in bioql PyPI...
EUVD-2025-13950
Malicious code in bioql PyPI...
EUVD-2024-47418
Malicious code in bioql PyPI...
EUVD-2022-31063
Malicious code in bioql PyPI...
EUVD-2022-24368
Malicious code in bioql PyPI...
EUVD-2022-33058
Malicious code in bioql PyPI...
SpecialFolderDatablock - Windows LNK File Special UNC Path NTLM Leak
This module creates a malicious Windows shortcut LNK file that specifies a special UNC path in SpecialFolderDatablock of Shell Link .LNK that can trigger an authentication attempt to a remote server. This can be used to harvest NTLM authentication credentials. When a victim browse to the location...
Security Bulletin: IBM WebSphere Application Server, which is bundled with IBM WebSphere Remote Server, is affected by a denial of service (CVE-2025-36099)
Summary IBM WebSphere Application Server is shipped with IBM WebSphere Remote Server. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...
CVE-2025-11046
A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been...
CVE-2025-10760
A flaw has been found in Harness 3.3.0. This impacts the function LookupRepo of the file app/api/controller/gitspace/lookuprepo.go. Executing manipulation of the argument url can lead to server-side request forgery. The attack may be launched remotely. The exploit has been published and may be...
CVE-2025-10397 Magicblack MacCMS API server-side request forgery
A vulnerability was identified in Magicblack MacCMS 2025.1000.4050. This affects an unknown part of the component API Handler. The manipulation of the argument cjurl leads to server-side request forgery. The attack can be initiated remotely. The exploit is publicly available and might be used...
Linux Distros Unpatched Vulnerability : CVE-2021-32919
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Prosody before 0.11.9. The undocumented dialbackwithoutdialback option in moddialback enables an experimental feature for...