104 matches found
VulnCheck KEV: CVE-2023-6909
Path Traversal: '..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2...
CVE-2024-2928
A Local File Inclusion LFI vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can...
CVE-2025-54719
Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi allows Object Injection.This issue affects Yogi - Health Beauty & Yoga: from n/a through = 2.9.2...
EUVD-2025-37986
Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi allows Object Injection.This issue affects Yogi - Health Beauty & Yoga: from n/a through = 2.9.2...
CVE-2025-54719 WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 - Deserialization of untrusted data Vulnerability
Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi allows Object Injection.This issue affects Yogi - Health Beauty & Yoga: from n/a through = 2.9.2...
CVE-2025-54718
CVE-2025-54718 affects the WordPress theme NooTheme Yogi - Health Beauty & Yoga (noo-yogi), with the vulnerability described as a Reflected Cross-Site Scripting (XSS) due to improper input neutralization during web page generation. The issue targets Yogi - Health Beauty & Yoga versions from n/a t...
PT-2025-45235
Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi allows Object Injection.This issue affects Yogi - Health Beauty & Yoga: from n/a through = 2.9.2...
PT-2025-45234
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi allows Reflected XSS.This issue affects Yogi - Health Beauty & Yoga: from n/a through = 2.9.2...
WordPress plugin Yogi 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
EUVD-2017-8064
Malware in sbrugna...
EUVD-2017-8974
Malware in sbrugna...
EUVD-2015-9281
Malware in sbrugna...
EUVD-2025-28500
Malicious code in bioql PyPI...
EUVD-2025-10597
Malicious code in bioql PyPI...
EUVD-2025-9076
Malicious code in bioql PyPI...
EUVD-2024-1104
Malicious code in bioql PyPI...
CVE-2025-53212
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Revolution Video Player With Bottom Playlist revolution-video-player allows Reflected XSS.This issue affects Revolution Video Player With Bottom Playlist: from n/a through = 2.9.2...
CVE-2025-53212
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Revolution Video Player With Bottom Playlist revolution-video-player allows Reflected XSS.This issue affects Revolution Video Player With Bottom Playlist: from n/a through = 2.9.2...
CVE-2025-53212
CVE-2025-53212 affects the WordPress plugin Revolution Video Player With Bottom Playlist (versions up to 2.9.2). The issue is a Reflected Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation. Impact is consistent with a reflective XSS vector, with CVSS v3....
PT-2025-33975 · Unknown · Revolution Video Player With Bottom Playlist
Name of the Vulnerable Software and Affected Versions: Revolution Video Player With Bottom Playlist versions through 2.9.2 Description: This issue involves improper neutralization of input during web page generation, leading to a reflected cross-site scripting XSS condition. Recommendations: Upda...