187 matches found
EUVD-2023-49574
Malicious code in bioql PyPI...
EUVD-2024-49231
Malicious code in bioql PyPI...
CVE-2025-59304
A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...
CVE-2025-59397
Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...
CVE-2025-59304
Summary: CVE-2025-59304 describes a directory traversal in Swetrix Web Analytics API 3.1.1 before 7d8b972 that enables a remote attacker to achieve Remote Code Execution via a crafted HTTP request. The issue stems from a path traversal vulnerability in the API, with an impact described as high ac...
CVE-2025-59304
A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...
CVE-2025-59304
A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...
PT-2025-38227
Name of the Vulnerable Software and Affected Versions Swetrix Web Analytics API versions prior to 7d8b972 Description A directory traversal issue exists in Swetrix Web Analytics API 3.1.1 before commit 7d8b972. This allows a remote attacker to achieve Remote Code Execution via a crafted HTTP...
GHSA-6W8R-XGQQ-QG6G Open Web Analytics Server is vulnerable to SQL Injection
Open Web Analytics OWA before 1.8.1 allows SQL injection...
Open Web Analytics Server is vulnerable to SQL Injection
Open Web Analytics OWA before 1.8.1 allows SQL injection...
SQL Injection
Overview open-web-analytics/open-web-analytics is an open source analytics framework. Affected versions of this package are vulnerable to SQL Injection via the query process. An attacker can access sensitive information from the database by injecting crafted SQL statements. Remediation Upgrade...
CVE-2025-59397
Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...
CVE-2025-59397
Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...
PT-2025-37722
Name of the Vulnerable Software and Affected Versions Open Web Analytics versions prior to 1.8.1 Description Open Web Analytics OWA before version 1.8.1 is susceptible to SQL injection. Recommendations Update to version 1.8.1 or later...
CVE-2025-59397
CVE-2025-59397 concerns Open Web Analytics (OWA) prior to 1.8.1. The vulnerability is a SQL injection in the owa_db.php component via a v[value] input, impacting potentially data confidentiality as per the CVSS metrics (Confidentiality Impact: Low; no other impacts). Affected product/version: Ope...
CVE-2025-59397
Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...
CVE-2025-59397
Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...
Open Web Analytics Server SQL注入漏洞
Open Web Analytics Server is Open Web Analytics open source alternative for commercial web analytics tools such as Google Analytics. A SQL injection vulnerability exists in versions of Open Web Analytics Server prior to 1.8.1 that stems from vulnerability to SQL injection attacks...
Malicious code in cammy-web-analytics (npm)
The package cammy-web-analytics was found to contain malicious code...
Malicious code in @moonpig/web-core-analytics (npm)
The package @moonpig/web-core-analytics was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...