160 matches found
EUVD-2024-54165
Malicious code in bioql PyPI...
EUVD-2023-54141
Malicious code in bioql PyPI...
EUVD-2023-12786
Malicious code in bioql PyPI...
EUVD-2023-23549
Malicious code in bioql PyPI...
EUVD-2022-52045
Malicious code in bioql PyPI...
EUVD-2023-12642
Malicious code in bioql PyPI...
EUVD-2023-33835
Malicious code in bioql PyPI...
EUVD-2024-54182
Malicious code in bioql PyPI...
EUVD-2023-59381
Malicious code in bioql PyPI...
EUVD-2025-6750
Malicious code in bioql PyPI...
EUVD-2023-34345
Malicious code in bioql PyPI...
EUVD-2023-23582
Malicious code in bioql PyPI...
EUVD-2022-51879
Malicious code in bioql PyPI...
EUVD-2023-34050
Malicious code in bioql PyPI...
EUVD-2023-43863
Malicious code in bioql PyPI...
CVE-2025-9018
The Time Tracker plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the 'ttupdatetablefunction' and 'ttdeleterecordfunction' functions in all versions up to, and including, 3.1.0. This makes it possible for authenticated attackers...
CVE-2025-7642
CVE-2025-7642 affects the WordPress plugin Simpler Checkout, with authentication bypass in versions 0.7.0–1.1.9 due to improper identity verification in the simplerwc_woocommerce_order_created() flow, allowing unauthenticated attackers to log in as other users (potential admin if a test admin ord...
CVE-2025-9139
A vulnerability was determined in Scada-LTS 2.7.8.1. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/dwr/call/plaincall/WatchListDwr.init.dwr. Executing manipulation can lead to information disclosure. The attack may be performed from a remote location. The explo...
CVE-2025-9138
A vulnerability was found in Scada-LTS 2.7.8.1. Affected is an unknown function of the file pointHierarchy/new/. Performing manipulation of the argument Title results in cross site scripting. The attack is possible to be carried out remotely. The exploit has been made public and could be used. Th...
CVE-2025-9137
A vulnerability has been found in Scada-LTS 2.7.8.1. This impacts an unknown function of the file scheduledevents.shtm. Such manipulation of the argument alias leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. The...