17 matches found
EUVD-2025-14255
Malicious code in bioql PyPI...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2025-4539
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This vulnerability affects unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The...
CVE-2025-4539
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This vulnerability affects unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The...
CVE-2025-4539
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This vulnerability affects unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The...
CVE-2025-4539 Hainan ToDesk DLL File Parser profapi.dll uncontrolled search path
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This vulnerability affects unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The...
CVE-2025-4539 Hainan ToDesk DLL File Parser profapi.dll uncontrolled search path
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This vulnerability affects unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The...
CVE-2025-4539
CVE-2025-4539 affects Hainan ToDesk 4.7.6.3, due to an uncontrolled search path in the profapi.dll located in the DLL File Parser component. This enables a local-host attack; exploitation is described as high-complexity with public disclosure. No patch/version fix is provided in the sources; a te...
PT-2025-20661 · Hainan · Hainan Todesk
Name of the Vulnerable Software and Affected Versions: Hainan ToDesk version 4.7.6.3 Description: A critical vulnerability was found in Hainan ToDesk, affecting unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to an uncontrolled search path, making ...
ToDesk 代码问题漏洞
ToDesk is a professional remote desktop software from ToDesk China. A code issue vulnerability exists in ToDesk version 4.7.6.3, which stems from an uncontrolled search path for the library profapi.dll in the component DLL File Parser...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
ToDesk 安全漏洞
ToDesk is a professional remote desktop software from ToDesk China. A security vulnerability exists in ToDesk v.1.1, which stems from the presence of a SQL injection vulnerability that allows remote attackers to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
CVE-2024-44542 overview (normal mode) Affected software: todesk v1.1 (ToDesk remote desktop software). Vulnerability: SQL injection in the API endpoint /todesk.com/news.html that allows a remote attacker to craft inputs to execute arbitrary code. Root cause is a vulnerable parameter handling in t...
PT-2024-31170 · Topdesk · Topdesk
Name of the Vulnerable Software and Affected Versions: todesk version 1.1 Description: The issue allows a remote attacker to execute arbitrary code. This is achieved via the "/todesk.com/news.html" API endpoint, where a parameter is vulnerable to SQL injection. No information is provided about th...