133 matches found
EUVD-2013-1053
Malware in sbrugna...
EUVD-2008-6104
Malware in sbrugna...
EUVD-2021-24460
Malware in sbrugna...
EUVD-2008-3249
Malware in sbrugna...
EUVD-2011-1014
Malware in sbrugna...
EUVD-2025-22019
Malicious code in bioql PyPI...
EUVD-2025-9639
Malicious code in bioql PyPI...
EUVD-2024-42753
Malicious code in bioql PyPI...
EUVD-2024-22397
Malicious code in bioql PyPI...
EUVD-2025-20012
Malicious code in bioql PyPI...
EUVD-2025-23909
Malicious code in bioql PyPI...
EUVD-2025-4415
Malicious code in bioql PyPI...
CVE-2025-8908 Shanghai Lingdang Information Technology Lingdang CRM event.php sql injection
A vulnerability was determined in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5.4. Affected by this issue is some unknown functionality of the file crm/WeiXinApp/yunzhijia/event.php. The manipulation of the argument openid leads to sql injection. The attack may be launched...
CVE-2025-8730
CVE-2025-8730 affects Belkin F9K1009 and F9K1010 Web Interface (versions 2.00.04–2.00.09). The root cause is hard-coded credentials that enable remote authentication bypass, granting full admin access via the web login interface (login.htm) without valid credentials. Public PoCs/exploits exist (P...
Linux Distros Unpatched Vulnerability : CVE-2023-5729
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious web site can enter fullscreen mode while simultaneously triggering a WebAuthn prompt. This could have obscured the fullscreen notification and could...
CVE-2025-7753 code-projects Online Appointment Booking System adddoctor.php sql injection
A vulnerability was found in code-projects Online Appointment Booking System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/adddoctor.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. Th...
CVE-2025-6859 SourceCodester Best Salon Management System pro_sale.php sql injection
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been classified as critical. This affects an unknown part of the file /panel/prosale.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2025-43200
This issue was addressed with improved checks. This issue is fixed in watchOS 11.3.1, macOS Ventura 13.7.4, iOS 15.8.4 and iPadOS 15.8.4, iOS 16.7.11 and iPadOS 16.7.11, iPadOS 17.7.5, visionOS 2.3.1, macOS Sequoia 15.3.1, iOS 18.3.1 and iPadOS 18.3.1, macOS Sonoma 14.7.4. A logic issue existed...
CVE-2025-5850
A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been declared as critical. This vulnerability affects the function formsetschedled of the file /goform/SetLEDCf of the component HTTP POST Request Handler. The manipulation of the argument Time leads to buffer overflow. The attack c...
CVE-2025-5850
The CVE-2025-5850 entry concerns Tenda AC15 (version 15.03.05.19_multi) with a buffer overflow in the HTTP POST Request Handler’s function formsetschedled located in /goform/SetLEDCf. The Time parameter manipulation triggers the overflow, enabling remote exploitation, which has been publicly disc...