CVE-2025-54857

Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in SkyBridge BASIC MB-A130 Ver.1.5.8 and earlier. If exploited, a remote unauthenticated attacker may execute arbitrary OS commands with root privileges...

CVE-2025-54857

Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in SkyBridge BASIC MB-A130 Ver.1.5.8 and earlier. If exploited, a remote unauthenticated attacker may execute arbitrary OS commands with root privileges...

Seikou202fSolutions SkyBridge BASIC MB-A130 操作系统命令注入漏洞

The Seikou202fSolutions SkyBridge BASIC MB-A130 is a wireless router from Seikou202fSolutions, Japan. An operating system command injection vulnerability exists in Seikou202fSolutions SkyBridge BASIC MB-A130 version 1.5.8 and earlier, which stems from OS command injection and could lead to the...

PT-2025-35457

Name of the Vulnerable Software and Affected Versions SkyBridge BASIC MB-A130 versions prior to 1.5.8 Description Improper neutralization of special elements used in an OS command 'OS Command Injection' exists in the software. If exploited, a remote unauthenticated attacker may execute arbitrary ...

Linux Distros Unpatched Vulnerability : CVE-2020-27372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow vulnerability exists in Brandy Basic V Interpreter 1.21 in the runinterpreter function. CVE-2020-27372 Note that Nessus relies on the presence...

Siemens TeleControl Server Basic Database Service Detection

Binary data siemenstelecontrolserverbasicdbservicedetect.nbin...

Siemens TeleControl Server Basic SQLi (CVE-2025-27540)

Binary data siemenstelecontrolserverbasiccve-2025-27540.nbin...

PT-2025-44139

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the tty subsystem, specifically in the n gsm component. The issue arises from the potential to block the input queue while waiting for a Modem...

Linux Distros Unpatched Vulnerability : CVE-2024-29421

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xmedcon 0.23.0 and fixed in v.0.24.0 is vulnerable to Buffer Overflow via libs/dicom/basic.c which allows an attacker to execute arbitrary code. CVE-2024-29421...

Linux Distros Unpatched Vulnerability : CVE-2019-19796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Yabasic 2.86.2 has a heap-based buffer overflow in myformat in function.c via a crafted BASIC source file. CVE-2019-19796 Note that Nessus relies on the presenc...

Authorization Bypass in MLflow Basic Auth (unprotected Flask/GraphQL routes)

This report is not public...

CVE-2025-48160 WordPress Caliris <= 1.5 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CocoBasic Caliris caliris-wp allows PHP Local File Inclusion.This issue affects Caliris: from n/a through = 1.5...

Dell PowerEdge Platform 14G AMD BIOS Information Disclosure Vulnerability

Dell PowerEdge Platform 14G AMD BIOS is a BIOS system from Dell USA. The Dell PowerEdge Platform 14G AMD BIOS suffers from an information disclosure vulnerability that originates from end-of-buffer memory location access, which can be exploited by an attacker to gain access to internal system...

CVE-2025-38584

In the Linux kernel, the following vulnerability has been resolved: padata: Fix pd UAF once and for all There is a race condition/UAF in padatareorder that goes back to the initial commit. A reference count is taken at the start of the process in padatadoparallel, and released at the end in...

Linux Distros Unpatched Vulnerability : CVE-2025-8264

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package z-push/z-push-dev before 2.7.6 are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inje...

CVE-2024-12575

CVE-2024-12575 relates to the WordPress plugin Poll Maker – Versus Polls, Anonymous Polls, Image Polls (≤ 5.8.9). The vulnerability is an unauthenticated basic information exposure exposed via the ajax action ays_finish_poll, allowing attackers to retrieve admin email information from poll respon...

Malicious code in test-mlw2-cleck-gault-nidal-basic (npm)

The package test-mlw2-cleck-gault-nidal-basic was found to contain malicious code...

Malicious code in Basic-Material-framework (npm)

The package Basic-Material-framework was found to contain malicious code...

Malicious code in basic-webpack-project (npm)

The package basic-webpack-project was found to contain malicious code...

Malicious code in qdrant-node-js-basic-example (npm)

The package qdrant-node-js-basic-example was found to contain malicious code...