WordPress plugin Include Fussball.de Widgets 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

EUVD-2018-5384

Malware in sbrugna...

EUVD-2021-1319

Malware in sbrugna...

EUVD-2020-25192

Malware in sbrugna...

EUVD-2022-48472

Malicious code in bioql PyPI...

EUVD-2024-47313

Malicious code in bioql PyPI...

EUVD-2024-54501

Malicious code in bioql PyPI...

EUVD-2022-15916

Malicious code in bioql PyPI...

pyLoad SQL注入漏洞

pyLoad is pyLoad open source a free open source download manager written in Python. A SQL injection vulnerability exists in pyLoad versions prior to 0.5.0b3.dev91, which stems from the API parameter addlinks not being sufficiently filtered, which could lead to an SQL injection attack...

CVE-2024-45789

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used during the registration process. An authenticated remote attacker could exploit this vulnerability by manipulating parameter in the API request body on the...

CVE-2023-48430

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 2. The REST API of affected devices does not check the length of parameters in certain conditions. This allows a malicious admin to crash the server by sending a crafted request to the API. The server will automatically...

CVE-2024-42189

HCL BigFix Web Reports might be subject to a Denial of Service DoS attack, due to a potentially weak validation of an API parameter...

CVE-2024-42189

HCL BigFix Web Reports might be subject to a Denial of Service DoS attack, due to a potentially weak validation of an API parameter...

CVE-2024-42189

CVE-2024-42189 affects HCL BigFix Web Reports. The issue is a Denial of Service caused by potentially weak validation of an API parameter, exploitable over the network with no required privileges and user interaction. The provided documents describe the vulnerability and reference the KB0120585 a...

HCL BigFix Platform 安全漏洞

HCL BigFix Platform is a suite of endpoint security management platform from HCL India. The platform supports automated discovery, management and remediation of endpoint security issues. A security vulnerability exists in HCL BigFix Platform, which stems from insufficient validation of API...

PT-2025-16374 · Hcl · Hcl Bigfix Web Reports

Name of the Vulnerable Software and Affected Versions: HCL BigFix Web Reports affected versions not specified Description: The issue is related to a potentially weak validation of an API parameter, which might make HCL BigFix Web Reports subject to a Denial of Service DoS attack. Recommendations:...

PHPSHE 代码注入漏洞

PHPSHE is a set of online shopping mall system of China Lingbao Jane Hao Network Technology PHPSHE company. The system supports express tracking, online chat, order evaluation and statistics and other functions. PHPSHE 1.8 version of the existence of code injection vulnerability, the vulnerabilit...

CVE-2024-20532

A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and delete arbitrary files on an affected device. To exploit this vulnerability, the attacker would need valid Super Admin credentials. This vulnerability is due to insufficient validation of user-suppli...

CVE-2024-47651 Parameter Pollution Vulnerability

This vulnerability exists in Shilpi Client Dashboard due to improper handling of multiple parameters in the API endpoint. An authenticated remote attacker could exploit this vulnerability by including multiple “userid” parameters in the API request body leading to unauthorized access of sensitive...

CVE-2024-47087

This vulnerability exists in Apex Softcell LD Geo due to improper validation of the certain parameters Client ID, DPID or BOID in the API endpoint. An authenticated remote attacker could exploit this vulnerability by manipulating parameters in the API request body leading to exposure of sensitive...