18 matches found
CVE-2026-23809
A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation m...
CVE-2025-70821
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
CVE-2025-70821
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
CVE-2025-70821
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
CVE-2025-70821
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
CVE-2025-70821
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
PT-2026-22738
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
EUVD-2025-208233
renren-secuity before v5.5.0 is vulnerable to SQL Injection in the BaseServiceImpl.java component...
CVE-2025-70821
CVE-2025-70821 affects renren-secuity prior to v5.5.0, with the vulnerability located in BaseServiceImpl.java and described as a SQL Injection flaw. The available documents do not provide exploitation details, affected versions beyond the cited range, or remediation steps. No additional context o...
PT-2024-25110 · Qualcomm · Snapdragon +147
Name of the Vulnerable Software and Affected Versions: No specific software or affected versions are mentioned in the provided descriptions. Description: There is an information disclosure issue when parsing the BSS parameter change count or MLD capabilities fields of the ML IE. This issue arises...
Malicious Package
Overview seller-base-service is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...
Malicious code in seller-base-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c65f77a2c50479bdb699150510efb95bd94617e17dcba014f9f624746a7b2492 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6005 Malicious code in seller-base-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c65f77a2c50479bdb699150510efb95bd94617e17dcba014f9f624746a7b2492 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-86 Malicious code in @atlasmonorepo/atlas-base-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30a46d56a7abeecc8a59cf19d8b7b2cd8fc4f78c673e174fd24607258f57b2a9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @atlasmonorepo/atlas-base-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30a46d56a7abeecc8a59cf19d8b7b2cd8fc4f78c673e174fd24607258f57b2a9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1156 Malicious code in atlas-base-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d328ae053c02e5473097ac9ada673c39d0cafe857f01971ba3d424f41a5b29e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in atlas-base-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d328ae053c02e5473097ac9ada673c39d0cafe857f01971ba3d424f41a5b29e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Glacies IceHRM Admin Reports SQL injection Vulnerability
Summary An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...