Unity Linux 20.1070e Security Update: infinispan (UTSA-2026-016716)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016716 advisory. It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker cou...

CVE-2025-61730 Handshake messages may be processed at the incorrect encryption level in crypto/tls

During the TLS 1.3 handshake if multiple messages are sent in records that span encryption level boundaries for instance the Client Hello and Encrypted Extensions messages, the subsequent messages may be processed before the encryption level changes. This can cause some minor information disclosu...

CVE-2006-1775

Multiple cross-site scripting XSS vulnerabilities in phpBB 2.0.19 allow remote attackers to inject arbitrary web script or HTML via the 1 Site Description field in a adminboard.php, the 2 Group name and 3 Group description fields in b admingroups.php and c groupcp.php, the 4 Theme Name field in d...

EUVD-2018-1888

Malware in sbrugna...

EUVD-2014-0050

Malware in sbrugna...

EUVD-2015-2794

Malware in sbrugna...

EUVD-2006-2605

Malware in sbrugna...

EUVD-2024-40699

Malicious code in bioql PyPI...

EUVD-2024-0769

Malicious code in bioql PyPI...

CVE-2025-0192

A stored Cross-site Scripting XSS vulnerability exists in the latest version of wandb/openui. The vulnerability is present in the edit HTML functionality, where an attacker can inject malicious scripts. When the modified HTML is shared with another user, the XSS payload executes, potentially...

CVE-2025-1611

A vulnerability was found in ShopXO up to 6.4.0. It has been classified as problematic. This affects an unknown part of the file app/service/ThemeAdminService.php of the component Template Handler. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit ha...

CVE-2025-24428 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed...

Prototype Pollution

bmoor is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype via the set function...

Remote Code Execution

An attacker is able to inject and execute arbitrary code on the host OS if the response can be manipulated for a request being made by the CachingHttpClient...

Play TV 1.25.1 Build r123776 DLL Hijacking

Document Title: =============== Play TV v1.25.1Build r123776 - DLL Hijack Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2085 Release Date: ============= 2017-09-04 Vulnerability Laboratory ID VL-ID: ====================================...

CVE-2011-0911

Cross-site scripting XSS vulnerability in the Users module in Zikula before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: it is possible that this overlaps CVE-2011-0535...

Opera Web Browser Command Execution and XSS Vulnerabilities - Windows

Opera Web Browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera Remote Code Execution and Information Disclosure Vulnerabilities (Windows)

The host is installed with Opera Web Browser and is prone to remote code execution and information disclosure Vulnerabilities. OpenVAS Vulnerability Test $Id: gboperainfodiscncodeexecwin.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Remote Code Execution and Information Disclosure Vulnerabiliti...

Opera Web Browser Multiple XSS Vulnerabilities - Windows

Opera web browser is prone to multiple Cross Site Scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...