50 matches found
CVE-2023-45867
ILIAS 2013-09-12 release contains a medium-criticality Directory Traversal local file inclusion vulnerability in the ScormAicc module. An attacker with a privileged account, typically holding the tutor role, can exploit this to gain unauthorized access to and potentially retrieve confidential fil...
CVE-2017-18438
cPanel before 64.0.21 allows demo accounts to execute code via Encoding API calls SEC-242...
EUVD-2019-10663
Malware in sbrugna...
EUVD-2019-19311
Malware in sbrugna...
EUVD-2021-20100
Malware in sbrugna...
EUVD-2021-11721
Malware in sbrugna...
EUVD-2020-4983
Malware in sbrugna...
EUVD-2019-2648
Malware in sbrugna...
EUVD-2017-9560
Malware in sbrugna...
EUVD-2022-46917
Malicious code in bioql PyPI...
EUVD-2023-52444
Malicious code in bioql PyPI...
EUVD-2023-30268
Malicious code in bioql PyPI...
EUVD-2024-20711
Malicious code in bioql PyPI...
EUVD-2024-39290
Malicious code in bioql PyPI...
EUVD-2022-43082
Malicious code in bioql PyPI...
EUVD-2025-17330
Malicious code in bioql PyPI...
EUVD-2022-4079
Malicious code in bioql PyPI...
CVE-2025-46647
A vulnerability of plugin openid-connect in Apache APISIX. This vulnerability will only have an impact if all of the following conditions are met: 1. Use the openid-connect plugin with introspection mode 2. The auth service connected to openid-connect provides services to multiple issuers 3...
CVE-2025-52920
Innoshop through 0.4.1 allows Insecure Direct Object Reference IDOR at multiple places within the frontend shop. Anyone can create a customer account and easily exploit these. Successful exploitation results in disclosure of the PII of other customers and the deletion of their reviews of products...
CVE-2025-52920
Innoshop through 0.4.1 allows Insecure Direct Object Reference IDOR at multiple places within the frontend shop. Anyone can create a customer account and easily exploit these. Successful exploitation results in disclosure of the PII of other customers and the deletion of their reviews of products...