144 matches found
PT-2025-49282
Advantech WISE-DeviceOn Server versions prior to 5.4 contain a stored cross-site scripting XSS vulnerability in the /rmm/v1/devicegroups/ endpoint. When an authenticated user creates a device group, the name and description values are stored and later rendered in device group listings without...
CVE-2025-62508
Citizen is a MediaWiki skin that makes extensions part of the cohesive experience. Citizen from 3.3.0 to 3.9.0 are vulnerable to stored cross-site scripting in the sticky header button message handling. In stickyHeader.js the copyButtonAttributes function assigns innerHTML from a source element’s...
EUVD-2017-1264
Malware in sbrugna...
EUVD-2016-9986
Malware in sbrugna...
EUVD-2019-6034
Malware in sbrugna...
EUVD-2021-20368
Malware in sbrugna...
EUVD-2020-28699
Malware in sbrugna...
EUVD-2025-20088
Malicious code in bioql PyPI...
EUVD-2022-40560
Malicious code in bioql PyPI...
EUVD-2024-3177
Malicious code in bioql PyPI...
EUVD-2025-5941
Malicious code in bioql PyPI...
EUVD-2024-45596
Malicious code in bioql PyPI...
EUVD-2022-27955
Malicious code in bioql PyPI...
EUVD-2024-3253
Malicious code in bioql PyPI...
EUVD-2022-28159
Malicious code in bioql PyPI...
EUVD-2025-4819
Malicious code in bioql PyPI...
EUVD-2025-4810
Malicious code in bioql PyPI...
CVE-2025-8556 Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results
A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange...
CVE-2025-8556
A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange. Mitigation Mitigation for this issue is either not availabl...
CVE-2025-7380 A stored Cross-Site Scripting (XSS) vulnerability exists in the Access Control of ADM
A stored Cross-Site Scripting XSS vulnerability exists in the Access Control of ADM, the issue allows an attacker to inject malicious scripts into the folder name field while creating a new shared folder. These scripts are not properly sanitized and will be executed when the folder name is...