CVE-2020-7949

schemasystem.dll in Valve Dota 2 before 7.23f allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a GetValue call...

EUVD-2019-16776

Malware in sbrugna...

EUVD-2017-12029

Malware in sbrugna...

EUVD-2020-27969

Malware in sbrugna...

EUVD-2007-0192

Malware in sbrugna...

EUVD-2021-19452

Malware in sbrugna...

EUVD-2002-1344

Malware in sbrugna...

EUVD-2019-6199

Malware in sbrugna...

EUVD-2022-37237

Malicious code in bioql PyPI...

EUVD-2025-17690

Malicious code in bioql PyPI...

EUVD-2022-0380

Malicious code in bioql PyPI...

EUVD-2024-41717

Malicious code in bioql PyPI...

EUVD-2022-0052

Malicious code in bioql PyPI...

EUVD-2021-34261

Malicious code in bioql PyPI...

EUVD-2023-28582

Malicious code in bioql PyPI...

PT-2025-30383 · WordPress · Conditional Fields +3

Name of the Vulnerable Software and Affected Versions: Extensions For CF7 versions up to and including 3.2.8 Description: The Extensions For CF7 Contact form 7 Database, Conditional Fields and Redirection plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path...

CVE-2023-26449

The "OX Chat" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker...

CVE-2022-42281

NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure...

CVE-2019-15131

In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and executed. This vulnerability could allow an attacker to create directories and save files on Code42 servers, which could...

CVE-2024-4990

In yiisoft/yii2 version 2.0.48, the base Component class contains a vulnerability where the set magic method does not validate that the value passed is a valid Behavior class name or configuration. This allows an attacker to instantiate arbitrary classes, passing parameters to their constructors...