30 matches found
EUVD-2019-7663
Malware in sbrugna...
EUVD-2015-0571
Malware in sbrugna...
EUVD-2002-1349
Malware in sbrugna...
EUVD-2004-1192
Malware in sbrugna...
EUVD-2012-0328
Malware in sbrugna...
EUVD-2017-0220
Malware in sbrugna...
EUVD-2018-6792
Malware in sbrugna...
EUVD-2023-1667
Malicious code in bioql PyPI...
PT-2025-40379
Name of the Vulnerable Software and Affected Versions AndSoft e-TMS version 25.03 Description A cross-site scripting XSS issue exists that allows an attacker to execute JavaScript code in a victim’s browser. This is achieved by sending a malicious URL. The vulnerability is reflected in the...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
CVE-2019-15060
The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field...
CVE-2019-20566
An issue was discovered on Samsung mobile devices with any before September 2019 for SMP1300 Exynos modem chipsets software. Attackers can trigger stack corruption in the Shannon modem via a crafted RP-Originator/Destination address. The Samsung ID is SVE-2019-14858 September 2019...
CVE-2002-2371
Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service crash via a packet containing the device's hardware address as the source MAC address in the DLC header...
CVE-2023-43901
Incorrect access control in the AdHoc User creation form of EMSigner v2.8.7 allows unauthenticated attackers to arbitrarily modify usernames and privileges by using the email address of a registered user...
Saho ADM100和ADM-100FP 访问控制错误漏洞
Saho ADM100 and Saho ADM-100FP are both full-featured security appliances from China's Saho Corporation. An access control error vulnerability exists in the Saho ADM100 and ADM-100FP, which stems from the lack of authentication for critical functions, and can be exploited by remote attackers to...
AZL-38998 CVE-2022-3854 affecting package ceph for versions less than 18.2.1-1
A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service...
Vaadin vaadin-server resource management error vulnerability
vaadin-server is a Vaadin open source application . A platform for rapid development of Web applications on the Java backend . vaadin: A resource management error vulnerability exists in the EmailValidator class in vaadin-server versions 7.0.0 through 7.7.21, which can be exploited by an attacker...
CVE-2014-7844
BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...
Monstra CMS Insecure Direct Object Reference Vulnerability
Monstra CMS is a lightweight PHP-based content management system CMS developed by Ukrainian software developer Sergey Romanenko. The system is easy to install and use, scalable and so on. An insecure direct object reference vulnerability exists in Monstra CMS version 3.0.4, which can be exploited...
Mozilla Firefox Cross-Site Scripting Vulnerability (CNVD-2018-12400)
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A cross-site scripting vulnerability exists in Mozilla Firefox versions prior to 59, where the program fails to properly validate user-submitted input. The vulnerability can be exploited by a...