EUVD-2017-0071

Malware in sbrugna...

EUVD-2021-26833

Malware in sbrugna...

EUVD-2014-0218

Malware in sbrugna...

Improper Neutralization of Null Byte or NUL Character

Overview Affected versions of this package are vulnerable to Improper Neutralization of Null Byte or NUL Character via the handling of URIs in ssh://. An attacker can inject shell expressions into command-line constructor by supplying URIs containing \0 characters. This is only exploitable if URI...

Improper Handling of Invalid Use of Special Elements

Overview Affected versions of this package are vulnerable to Improper Handling of Invalid Use of Special Elements via the handling of usernames. An attacker can inject shell expressions into command-line constructor by supplying usernames containing control characters. This is only exploitable if...

EUVD-2023-39854

Malicious code in bioql PyPI...

EUVD-2024-2428

Malicious code in bioql PyPI...

EUVD-2022-28070

Malicious code in bioql PyPI...

EUVD-2025-26142

Malicious code in bioql PyPI...

EUVD-2022-44051

Malicious code in bioql PyPI...

EUVD-2023-46595

Malicious code in bioql PyPI...

EUVD-2024-42541

Malicious code in bioql PyPI...

EUVD-2022-5176

Malicious code in bioql PyPI...

EUVD-2025-22106

Malicious code in bioql PyPI...

EUVD-2025-20101

Malicious code in bioql PyPI...

VulnCheck KEV: CVE-2023-50445

Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000 v4.5.0, MT1300 v4.3.7, MT300N-V2 v4.3.7, AR750S v4.3.7, AR750 v4.3.7, AR300M v4.3.7, and B1300 v4.3.7., allows local attackers to execute arbitrary code via the getsystemlog and...

Linux Distros Unpatched Vulnerability : CVE-2021-3197

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt before 3002.5. The salt-api's ssh client is vulnerable to a shell injection by including ProxyCommand in an argument, ...

CVE-2009-20010

Dogfood CRM version 2.0.10 contains a remote command execution vulnerability in the spell.php script used by its mail subsystem. The vulnerability arises from unsanitized user input passed via a POST request to the data parameter, which is processed by the underlying shell without adequate...

Linux Distros Unpatched Vulnerability : CVE-2019-11627

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID. CVE-2019-11627 Note that Nessus...

Linux Distros Unpatched Vulnerability : CVE-2021-3515

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A shell injection flaw was found in pglogical in versions before 2.3.4 and before 3.6.26. An attacker with CREATEDB privileges on a PostgreSQL server can craft ...