2439 matches found
EUVD-2023-31109
Malicious code in bioql PyPI...
EUVD-2025-1768
Malicious code in bioql PyPI...
EUVD-2025-1767
Malicious code in bioql PyPI...
EUVD-2023-56328
Malicious code in bioql PyPI...
EUVD-2023-56330
Malicious code in bioql PyPI...
EUVD-2023-55042
Malicious code in bioql PyPI...
EUVD-2023-45733
Malicious code in bioql PyPI...
EUVD-2021-6787
Malicious code in bioql PyPI...
EUVD-2024-51130
Malicious code in bioql PyPI...
EUVD-2023-54022
Malicious code in bioql PyPI...
EUVD-2022-28967
Malicious code in bioql PyPI...
EUVD-2024-40405
Malicious code in bioql PyPI...
EUVD-2023-56334
Malicious code in bioql PyPI...
EUVD-2022-24880
Malicious code in bioql PyPI...
EUVD-2023-31133
Malicious code in bioql PyPI...
EUVD-2023-36442
Malicious code in bioql PyPI...
EUVD-2023-46588
Malicious code in bioql PyPI...
CVE-2025-9206 Meks Easy Maps <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Meks Easy Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post title field in all version up to, and including, 2.1.4. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
LiteLLM Information health API_KEY Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of LiteLLM. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of the APIKEY parameter provided to the health endpoint. The issue results from...
CVE-2025-34182
In Deciso OPNsense before 25.7.4, when creating an "Interfaces: Devices: Point-to-Point" entry, the value of the parameter ptpid is not sanitized of HTML-related characters/strings. This value is directly displayed when visiting the page/interfacesassign.php, which can result in stored cross-site...