11 matches found
BIT-GITLAB-2026-1182 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.14 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to gain unauthorized access to confidential issue title created in public projects under certain circumstances...
EUVD-2020-2502
Malware in sbrugna...
EUVD-2023-44106
Malicious code in bioql PyPI...
EUVD-2022-25982
Malicious code in bioql PyPI...
CVE-2025-53902
Tuleap is an Open Source Suite created to facilitate management of software development and collaboration. In Tuleap Community Edition prior to version 16.9.99.1752585665 and Tuleap Enterprise Edition prior to 16.8-6 and 16.9-5, users may potentially access confidential information from artifacts...
PT-2024-6103
Name of the Vulnerable Software and Affected Versions Requests versions prior to 2.32.0 Description The issue is related to the incorrect implementation of control flow in the Python Requests library, which can allow an attacker to access confidential data. When making requests through a Requests...
PT-2024-6072 · FFmpeg +4 · Ffmpeg +4
Name of the Vulnerable Software and Affected Versions: FFmpeg version n6.1 Description: The issue is related to a heap buffer overflow vulnerability in the draw block rectangle function of libavfilter/vf codecview.c. This allows attackers to cause undefined behavior or a Denial of Service DoS via...
Western Digital EdgeRover 安全漏洞
Western Digital EdgeRover is a personal content application from Western Digital. Western Digital EdgeRover has a security vulnerability that could be exploited by an attacker to modify or access confidential resources...
PT-2020-13487 · Gitlab · Gitlab
Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 13.2.10 GitLab versions prior to 13.3.7 GitLab versions prior to 13.4.2 Description: Membership changes are not reflected in ToDo subscriptions, allowing guest users to access confidential issues through the API...
CVE-2019-19278
The CVE-2019-19278 entry concerns Siemens SINAMICS PERFECT HARMONY GH180 drives (MLFB 6SR32/4/5 with option A30 for HMIs ≥12 in, and MLFB 6SR325 High Availability) where an unauthenticated attacker with physical access can restore the device to a state where protection mechanisms are disabled. Th...
Многочисленные дырки в JRUN
Атакующий имеет возможность перезаписать файлы на сервере, выполнить код на сервере и получить доступ к служебным файлам...