239 matches found
EUVD-2021-21326
Malware in sbrugna...
EUVD-2000-0915
Malware in sbrugna...
EUVD-2023-37304
Malicious code in bioql PyPI...
EUVD-2021-31676
Malicious code in bioql PyPI...
EUVD-2024-54867
Malicious code in bioql PyPI...
EUVD-2021-32178
Malicious code in bioql PyPI...
EUVD-2022-49551
Malicious code in bioql PyPI...
EUVD-2023-30891
Malicious code in bioql PyPI...
EUVD-2022-6749
Malicious code in bioql PyPI...
EUVD-2023-29800
Malicious code in bioql PyPI...
EUVD-2023-26995
Malicious code in bioql PyPI...
gadgetinspector
This is a Java-based tool for finding deserialization gadget chains in Java applications. The tool is called "Gadget Inspector" and is presented as a project that was showcased at Black Hat USA 2018. The tool is designed to automatically discover possible gadget chains in an application's...
CVE-2024-41983
A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application displays SQL statement in the error messages encountered during the generation of reports using Cockpit tool...
WordPress All in One Time Clock Lite plugin cross-site scripting vulnerability
WordPress All in One Time Clock Lite plugin is a plugin for tracking employee's working hours and supports employee/volunteer/contractor attendance recording and report generation. The WordPress All in One Time Clock Lite plugin suffers from a cross-site scripting vulnerability that stems from th...
PrivescCheck
PrivescCheck This script aims to identify Local Privilege Escalation LPE vulnerabilities that are usually due to Windows configuration issues, or bad practices. It can also gather useful information for some exploitation and post-exploitation tasks. Getting started After downloading the script an...
CVE-2025-54316
An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting...
CVE-2025-54316
An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting...
Cleartext Storage of Sensitive Information
Overview Affected versions of this package are vulnerable to Cleartext Storage of Sensitive Information in the reporting process. An attacker can gain unauthorized access to sensitive information by exploiting the exposure of Git credentials during report generation. Note: - The versions 5.12.0-M...
CVE-2023-5514
The response messages received from the eSOMS report generation using certain parameter queries with full file path can be abused for enumerating the local file system structure...
CVE-2021-45406
In SalonERP 3.0.1, a SQL injection vulnerability allows an attacker to inject payload using 'sql' parameter in SQL query while generating a report. Upon successfully discovering the login admin password hash, it can be decrypted to obtain the plain-text password...