EUVD-2020-15539

Malware in sbrugna...

EUVD-2024-47964

Malicious code in bioql PyPI...

CVE-2025-46343

CVE-2025-46343 affects n8n prior to 1.90.0. The issue is stored XSS via the attachments view endpoint where uploaded binaries are served with an attacker-controlled MIME type. An authenticated member could upload an HTML file and, when a user requests the binary with MIME type text/html, the scri...

CVE-2024-6983

mudler/localai version 2.17.1 is vulnerable to remote code execution. The vulnerability arises because the localai backend receives inputs not only from the configuration file but also from other inputs, allowing an attacker to upload a binary file and execute malicious code. This can lead to the...

CVE-2024-6983 Remote Code Execution in mudler/localai

mudler/localai version 2.17.1 is vulnerable to remote code execution. The vulnerability arises because the localai backend receives inputs not only from the configuration file but also from other inputs, allowing an attacker to upload a binary file and execute malicious code. This can lead to the...

Joyful Note vulnerable to cross-site scripting

Overview Joyful Note from KENT-WEB is a bulletin board software that a user can upload a binary file such as an image file. Joyful Note contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Apply an update Update to the lates...

The Windows environment via the MySQL to the SYSTEM status perform system commands-bug warning-the black bar safety net

Some time ago two about MySQL vulnerabilities in the MySQL CREATE FUNCTION mysql. func table allows injecting arbitrary function library vulnerability, the MySQL CREATE FUNCTION libc library allows arbitrary code execution vulnerabilities of a careful study of these two vulnerabilities, you can...