CVE-2009-4375

SQL injection vulnerability in repository/repositoryattachment.php in AlienVault Open Source Security Information Management OSSIM 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary SQL commands via the iddocument parameter...

Microsoft Windows NTFS 资源管理错误漏洞

Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-healing, and logging capabilities. Microsoft Windows NTFS suffers from a resource management error vulnerability that stems from an attacker's ability to elevate...

EUVD-2016-4847

Malware in sbrugna...

EUVD-2001-1397

Malware in sbrugna...

EUVD-2019-4206

Malware in sbrugna...

EUVD-2000-0893

Malware in sbrugna...

EUVD-2004-2024

Malware in sbrugna...

EUVD-2022-43485

Malicious code in bioql PyPI...

EUVD-2021-9539

Malicious code in bioql PyPI...

EUVD-2024-16459

Malicious code in bioql PyPI...

EUVD-2022-35036

Malicious code in bioql PyPI...

EUVD-2025-12538

Malicious code in bioql PyPI...

DEBIAN-CVE-2025-9566

There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the targ...

PT-2025-30020 · Eset · Eset Security

Name of the Vulnerable Software and Affected Versions: ESET security software affected versions not specified Description: A time-of-check to time-of-use race condition could allow an attacker to use the installed ESET security software to clear the content of an arbitrary file on the file system...

CVE-2025-5898

A vulnerability classified as critical has been found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. Affected is the function parsevariablesoption of the file utilities/pspp-convert.c. The manipulation leads to out-of-bounds write. The attack needs to be approached locally. The exploit has...

CVE-2022-44961

webtareas 2.4p5 was discovered to contain a cross-site scripting XSS vulnerability in the component /forums/editforum.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

CVE-2022-30768

A Stored Cross Site Scripting XSS issue in ZoneMinder 1.36.12 allows an attacker to execute HTML or JavaScript code via the Username field when an Admin or non-Admin users that can see other users logged into the platform clicks on Logout. NOTE: this exists in later versions than CVE-2019-7348 an...

CVE-2021-24379

The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user even unauthenticated to add unlimited like/dislike to any comment. The plugin appears to have som...

CVE-2014-9022

The Webform Component Roles module 6.x-1.x before 6.x-1.8 and 7.x-1.x before 7.x-1.8 for Drupal allows remote attackers to bypass the "disabled" restriction and modify read-only components via a crafted form...

CVE-2011-5303

Cross-site scripting XSS vulnerability in Spitfire CMS 1.0.436 allows remote attackers to inject arbitrary web script or HTML via a cmsusername cookie...