445 matches found
EUVD-2022-1312
Malicious code in bioql PyPI...
EUVD-2021-30721
Malicious code in bioql PyPI...
EUVD-2024-52771
Malicious code in bioql PyPI...
EUVD-2024-49891
Malicious code in bioql PyPI...
EUVD-2024-17089
Malicious code in bioql PyPI...
EUVD-2024-49894
Malicious code in bioql PyPI...
EUVD-2022-39814
Malicious code in bioql PyPI...
EUVD-2024-49128
Malicious code in bioql PyPI...
EUVD-2024-0328
Malicious code in bioql PyPI...
EUVD-2022-24392
Malicious code in bioql PyPI...
EUVD-2024-49949
Malicious code in bioql PyPI...
EUVD-2025-6934
Malicious code in bioql PyPI...
EUVD-2024-53560
Malicious code in bioql PyPI...
EUVD-2023-57772
Malicious code in bioql PyPI...
EUVD-2022-24667
Malicious code in bioql PyPI...
EUVD-2024-2900
Malicious code in bioql PyPI...
EUVD-2022-51401
Malicious code in bioql PyPI...
CVE-2025-60452
A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the download management module, specifically in the app\system\download\admin\downloadadmin.class.php component. The vulnerability allows attackers to upload malicious SVG...
CVE-2025-60445
CVE-2025-60445 affects XunRuiCMS 4.7.1. Root cause: insufficient validation of SVG uploads in dayrui/Fcms/Library/Upload.php, enabling stored XSS when the uploaded file is viewed. Impact: injected JavaScript code executes in the context of the uploaded SVG. Remediation: no patch/fix details provi...
CVE-2025-56515
File upload vulnerability in Fiora chat application 1.0.0 through user avatar upload functionality. The application fails to validate SVG file content, allowing malicious SVG files with embedded foreignObject elements containing iframe tags and JavaScript event handlers onmouseover to be uploaded...