Migration Planner UI 跨站脚本漏洞

The Migration Planner UI is an open-source migration planning front-end tool developed by KubeV2V. The Migration Planner UI has a cross-site scripting vulnerability. This vulnerability arises from the ability of attackers to register malicious discovery agents containing JavaScript code. When an...

CVE-2026-7624

The CVE concerns the SEO Plugin by Squirrly SEO for WordPress, vulnerable to an authorization bypass in all versions up to and including 12.4.16. The underlying issue is that the plugin fails to verify a user’s authorization before performing privileged cloud API operations. As a result, authenti...

EUVD-2020-3402

Malware in sbrugna...

EUVD-2014-2968

Malware in sbrugna...

EUVD-2023-43162

Malicious code in bioql PyPI...

CVE-2021-43051

The Spotfire Server component of TIBCO Software Inc.'s TIBCO Spotfire Server, TIBCO Spotfire Server, and TIBCO Spotfire Server contains a difficult to exploit vulnerability that allows malicious custom API clients with network access to execute internal API operations outside of the scope of thos...

CVE-2021-43051

The Spotfire Server component of TIBCO Software Inc.'s TIBCO Spotfire Server, TIBCO Spotfire Server, and TIBCO Spotfire Server contains a difficult to exploit vulnerability that allows malicious custom API clients with network access to execute internal API operations outside of the scope of thos...

PowerDNS Authoritative Server Module Authentication Bypass Vulnerability

PowerDNS Authoritative Server provides DNS-related products and services. PowerDNS Authoritative Server has an authentication bypass vulnerability in API operations that can be exploited by attackers to bypass security restrictions and perform unauthorized operations...

CVE-2014-2946

Cross-site request forgery CSRF vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote attackers to hijack the authentication of administrators for requests that perform API operations and send SMS messages via a request...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote attackers to hijack the authentication of administrators for requests that perform API operations and send SMS messages via a request...

CVE-2011-1146

Affected software/component: libvirt API in Red Hat libvirt 0.8.8. Vulnerability summary: libvirt.c does not properly restrict operations on a read-only connection, enabling a remote attacker to cause a host OS denial of service (crash) and potentially execute arbitrary code via six API calls: vi...