EUVD-2023-42652

Malicious code in bioql PyPI...

CVE-2023-38879

The Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to read arbitrary files via a directory traversal vulnerability in the 'filename' parameter of 'DownloadWindow.php'...

Open Solutions For Education openSIS Security Vulnerability

Open Solutions For Education openSIS is an open source student information management system from Open Solutions For Education, Inc. A security vulnerability exists in Open Solutions For Education openSIS Classic Community Edition v9.0, which originates from a Reflective Cross-Site Scripting XSS...

Security Bulletin: IBM SDK, Java Tech Edition Quarterly CPU Jul 2021 - Includes Oracle Jul 2021 CPU (minus CVE-2021-2341)

Summary This Security Bulletin provides steps for updating Java for Db2 Query Management Facility QMF Workstation and QMF Vision. Vulnerability Details CVEID: CVE-2021-2388 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow an unauthenticated attacker to...

Contiki-NG 缓冲区错误漏洞

Contiki-NG is an open source cross-platform operating system for next-generation IoT devices. An out-of-bounds write vulnerability exists in the rplextheadersrhupdate function in rpl-ext-header.c in the RPL-Classic and RPL-Lite implementations of Contiki-NG prior to version 4.6. The vulnerability...

CVE-2007-5311

Directory traversal vulnerability in backend/admin-functions.php in TorrentTrader Classic Edition 1.07 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the ssuri parameter...

CVE-2007-5311

CVE-2007-5311 concerns TorrentTrader Classic Edition 1.07. The vulnerability is in the backend/admin-functions.php component and is triggered by a directory traversal through a .. (dot dot) in the ss_uri parameter, allowing remote attackers to cause inclusion and execution of arbitrary local file...