CVE-2026-7864 Exposure of Sensitive Information to an Unauthorized Actor

SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through an unauthenticated endpoint in the new GINA UI, allowing remote attackers to obtain sensitive system information...

EUVD-2012-5842

Malware in sbrugna...

EUVD-2018-18557

Malware in sbrugna...

EUVD-1999-0990

Malware in sbrugna...

EUVD-2008-6169

Malware in sbrugna...

EUVD-2015-8584

Malware in sbrugna...

EUVD-2015-7805

Malware in sbrugna...

CVE-2025-29885

An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have already fixed the vulnerability in the following versions: File...

CVE-2011-4704

The Voxofon com.voxofon application before 2.5.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS information via a crafted application...

Linux Distros Unpatched Vulnerability : CVE-2017-1000250

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain...

K000150206: PostgreSQL vulnerabilities CVE-2019-10211, CVE-2017-7546, and CVE-2015-0244

Security Advisory Description CVE-2019-10211 Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via bundled OpenSSL executing code from unprotected directory. CVE-2017-7546 PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerabl...

The vulnerability of the ReportLab Python library for creating PDF files allows attackers to gain access to confidential data.

The vulnerability of the ReportLab Python library for creating PDF files is related to insufficient validation of incoming requests. Exploiting this vulnerability can allow an attacker operating remotely to gain access to confidential data...

HCL Technologies HCL Launch Security Breach

HCL Technologies HCL Launch is a versatile, enterprise-grade continuous delivery automation software from HCL Technologies, Inc. for handling the most complex deployment processes in DevOps. A security vulnerability exists in HCL Launch versions 7.0 through 7.0.5.18, 7.1 through 7.1.2.14, 7.2...

sd-webui-infinite-image-browsing security vulnerability

sd-webui-infinite-image-browsing is an image browser by zanllp personal developer. A security vulnerability exists in versions prior to sd-webui-infinite-image-browsing 977815a, which stems from a vulnerability that allows a remote attacker to obtain local files if Gradio authentication is enable...

The vulnerability of the core_user class implementation in the virtual learning environment Moodle allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the coreuser class implementation in the virtual learning environment Moodle is related to deficiencies in displaying hidden user fields. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2021)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Information Schema. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

The vulnerability of Google Chrome browsers, related to memory usage after deallocation, allows attackers to gain unauthorized access to information and compromise its integrity and accessibility.

The vulnerability of Google Chrome relates to the use of memory after deallocation. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to information and compromise its integrity and availability through a specially created HTML page...

The vulnerability of Firefox browser, related to the lack of protection for service data, allows attackers to gain access to confidential information.

The vulnerability of Firefox browsers is related to the lack of protection for service data. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...

The vulnerability of the McAfee Advanced Threat Defense software lies in the lack of protection for operational data, which allows attackers to gain unauthorized access to protected information.

The vulnerability of the McAfee Advanced Threat Defense security tool lies in the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to the protected information...

CVE-2019-7195

This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions...