EUVD-2021-2565

Malware in sbrugna...

EUVD-2017-2479

Malware in sbrugna...

EUVD-2022-44464

Malicious code in bioql PyPI...

EUVD-2023-27651

Malicious code in bioql PyPI...

CVE-2022-22947

In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the...

CVE-2019-1010113

Premium Software CLEditor 1.4.5 and earlier is affected by: Cross Site Scripting XSS. The impact is: An attacker might be able to inject arbitrary html and script code into the web site. The component is: jQuery plug-in. The attack vector is: the victim must open a crafted href attribute of a lin...

Online DJ Management System Cross-Site Scripting Vulnerability

Online DJ Management System is an online DJ management system. A cross-site scripting vulnerability exists in Online DJ Management System version 1.0, which originates from cross-site scripting due to an incorrect manipulation of the parameter name. An attacker can exploit this vulnerability by...

New Man-in-the-Disk attack leaves millions of Android phones vulnerable

Security researchers at Check Point Software Technologies have discovered a new attack vector against the Android operating system that could potentially allow attackers to silently infect your smartphones with malicious apps or launch denial of service attacks. Dubbed Man-in-the-Disk , the attac...