194 matches found
EUVD-2026-33292
Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical attacker with access to the Wireless Control Module WCM wiring harness to bypass the anti-theft shutdown. The WCM signals shutdown to a peer ECU via...
CVE-2026-49324 Indian Scout Bobber 2025 WCM brute-force
Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...
PT-2026-44853
Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical attacker with access to the Wireless Control Module WCM wiring harness to bypass the anti-theft shutdown. The WCM signals shutdown to a peer ECU via...
CVE-2020-24195
An Arbitrary File Upload in the Upload Image component in Sourcecodester Online Bike Rental v1.0 allows authenticated administrator to conduct remote code execution...
CVE-2020-24196
An Arbitrary File Upload in Vehicle Image Upload in Online Bike Rental v1.0 allows authenticated admin to conduct remote code execution...
CVE-2025-14065
The Simple Bike Rental plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'simpbirecaricaprenotazioni' AJAX action in all versions up to, and including, 1.0.6. This makes it possible for authenticated attackers, with Subscriber-level access...
CVE-2025-14065
CVE-2025-14065 affects the WordPress plugin “Simple Bike Rental” (publicly listed as Simple Bike Rental). The issue is a missing capability check on the AJAX action simpBire_carica_prenotazioni, allowing authenticated users with Subscriber+ privileges to retrieve all booking records containing cu...
CVE-2025-14065 Simple Bike Rental <= 1.0.6 - Missing Authorization to Authenticated (Subscriber+) Sensitive Booking Data Exposure
The Simple Bike Rental plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'simpbirecaricaprenotazioni' AJAX action in all versions up to, and including, 1.0.6. This makes it possible for authenticated attackers, with Subscriber-level access...
CVE-2025-14065 Simple Bike Rental <= 1.0.6 - Missing Authorization to Authenticated (Subscriber+) Sensitive Booking Data Exposure
The Simple Bike Rental plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'simpbirecaricaprenotazioni' AJAX action in all versions up to, and including, 1.0.6. This makes it possible for authenticated attackers, with Subscriber-level access...
WordPress Simple Bike Rental plugin <= 1.0.6 - Missing Authorization to Authenticated (Subscriber+) Sensitive Booking Data Exposure vulnerability
Missing Authorization to Authenticated Subscriber+ Sensitive Booking Data Exposure vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Simple Bike Rental versions = 1.0.6...
WordPress plugin Simple Bike Rental 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2025-50924
The Simple Bike Rental plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'simpbire carica prenotazioni' AJAX action in all versions up to, and including, 1.0.6. This makes it possible for authenticated attackers, with Subscriber-level acces...
EUVD-2025-35681
Malicious code in demo-bike-store npm...
MAL-2025-48557 Malicious code in demo-bike-store (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c9ef89d7c326b74bbab220d2d159df0e002f04d0379ce022ddad517f9b023d3a The OpenSSF Package Analysis project identified 'demo-bike-store' @ 2.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in demo-bike-store (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c9ef89d7c326b74bbab220d2d159df0e002f04d0379ce022ddad517f9b023d3a The OpenSSF Package Analysis project identified 'demo-bike-store' @ 2.0.1 npm as malicious. It is considered malicious because: - The package...
EUVD-2014-5576
Malware in sbrugna...
EUVD-2019-16975
Malware in sbrugna...
EUVD-2019-16976
Malware in sbrugna...
EUVD-2019-16974
Malware in sbrugna...
EUVD-2014-5607
Malware in sbrugna...