56 matches found
Exploit for Origin Validation Error in Langflow
CVE-2025-34291corssecurityscanner A lightweight Python-base...
wafuzz
wafuzz — Web Pentesting Orchestrator Interactive CLI web secu...
CVE-2026-31956
CVE-2026-31956 affects Xibo CMS prior to 4.4.1. An authenticated user can manually construct URLs to preview campaigns/regions and export saved reports belonging to other users due to an IDOR issue triggered by disableUserCheck without proper controller-level authorization. Impact is limited to u...
CVE-2026-25124 OpenEMR has Broken Access Control in Report/Clients/Message List CSV Export
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, the OpenEMR application is vulnerable to an access control flaw that allows low-privileged users, such as receptionists, to export the entire message list containing...
Exploit for OS Command Injection in Docker
HATCH Host Access Testing for Container Hardening A com...
PT-2026-5151
Name of the Vulnerable Software and Affected Versions ILIAS Learning Management System version 4.3 Description The ILIAS Learning Management System contains a server-side request forgery issue. This allows attackers to read local files through the portfolio PDF export functionality. Attackers can...
CVE-2025-14229
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
CVE-2025-14229
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
CVE-2025-14229
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
CVE-2025-14229
CVE-2025-14229 affects SourceCodester Inventory Management System 1.0, targeting the SVC Report Export component. The vulnerability arises from a manipulation that enables CSV injection , with remote feasibility and a publicly disclosed exploit. Public sources consistently describe the issue but ...
CVE-2025-14229 SourceCodester Inventory Management System SVC Report Export csv injection
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
CVE-2025-14229 SourceCodester Inventory Management System SVC Report Export csv injection
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
EUVD-2025-201705
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
SourceCodester Inventory Management System 安全漏洞
SourceCodester Inventory Management System is a SourceCodester open source inventory management system. A security vulnerability exists in SourceCodester Inventory Management System version 1.0, which stems from a CSV injection vulnerability in the SVC report export component...
PT-2025-49546
A security vulnerability has been detected in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the component SVC Report Export. Such manipulation leads to csv injection. It is possible to launch the attack remotely. The exploit has been disclosed...
PT-2025-44470
Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 5.7.3 Description Nagios XI versions prior to 5.7.3 contain a command injection issue in the report PDF download/export functionality. Insufficient validation or improper escaping of user-supplied values used in the...
Exploit for Deserialization of Untrusted Data in Microsoft
WSUSResponder v1.0.1 Module PowerShell de réponse à l'inc...
EUVD-2017-6432
Malware in sbrugna...
EUVD-2021-12904
Malware in sbrugna...
EUVD-2023-53318
Malicious code in bioql PyPI...