CVE-2026-47103

Python StateMachine versions 3.0.0 before 3.2.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary code by supplying malicious SCXML documents containing crafted attributes evaluated unsafely. The SCXMLProcessor passes attacker-controlled expression strings...

CVE-2025-30367

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.2.6 in the nextPage parameter of the /WeGIA/controle/control.php endpoint. This vulnerability allows attacker to manipulate SQL queries and access sensitive database information...

CVE-2022-0570

Heap-based Buffer Overflow in Homebrew mruby prior to 3.2...

DEBIAN-CVE-2021-31826

Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointer dereference flaw involving the session recovery feature. The flaw is exploitable for a daemon crash on systems not using this feature if a crafted cookie is supplied...

VMware AirWatch Launcher for Android UI Elevation of Privilege Vulnerability

VMware AirWatch is a suite of enterprise mobility management solutions from VMware, Inc. and VMware AirWatch Launcher for Android is one of the launchers based on the Android platform. A privilege extraction vulnerability exists in versions of VMware AirWatch Launcher for Android prior to 3.2.2. ...