CVE-2026-5454 GRID Organiser App co.gridapp.organiser app.json hard-coded key

A vulnerability was found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gridapp.organiser. Performing a manipulation of the argument SegmentWriteKey results in use of hard-coded cryptographic key . The attack is...

nginx-ui has Race Condition that Leads to Persistent Data Corruption and Service Collapse

The nginx-ui application is vulnerable to a Race Condition. Due to the complete absence of synchronization mechanisms Mutex and non-atomic file writes, concurrent requests lead to the severe corruption of the primary configuration file app.ini. This vulnerability results in a persistent Denial of...

EUVD-2025-21802

Malicious code in bioql PyPI...

CVE-2025-30027

An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a...

AXIS Device Manger 安全漏洞

AXIS Device Manger is an on-premise tool from Axis Sweden AXIS that provides a simple, cost-effective and secure way to perform device management. AXIS Device Manger has a security vulnerability that stems from insufficient validation of ACAP configuration file inputs, which could lead to the...