11 matches found
EUVD-2006-5122
Malware in sbrugna...
EUVD-2018-3784
Malware in sbrugna...
EUVD-2024-54554
Malicious code in bioql PyPI...
Code Injection Vulnerabilities in Various ABB Products
ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications...
IBM Cloud Pak for Security and IBM QRadar Suite Code Injection Vulnerabilities
IBM Cloud Pak for Security is a software application. An open security platform that connects to your existing data sources to generate deeper insights and enables you to take automated action faster.IBM QRadar Suite is an integrated security information and event management SIEM solution for...
CVE-2024-55063
Multiple Code Injection vulnerabilities in EasyVirt DC NetScope = 8.7.0 allows remote authenticated attackers to execute arbitrary code via the 1 lang parameter to /international/keyboard/options; the 2 keyboardlayout or 3 keyboardvariant parameter to /international/settings/keyboard; the 4...
CVE-2024-55063
CVE-2024-55063 affects EasyVirt DC NetScope versions 8.7.0 and earlier. The issue arises from improper handling of multiple parameters, enabling remote authenticated attackers to execute arbitrary code: (1) lang via /international/keyboard/options; (2) keyboard_layout or (3) keyboard_variant via ...
CVE-2025-22136 Tabby has a TCC Bypass via Misconfigured Node Fuses
Tabby formerly Terminus is a highly configurable terminal emulator. Prior to 1.0.217 , Tabby enables several high-risk Electron Fuses, including RunAsNode, EnableNodeCliInspectArguments, and EnableNodeOptionsEnvironmentVariable. These fuses create potential code injection vectors even though the...
MGASA-2021-0335 Updated php-smarty package fixes security vulnerabilities
Smarty before 3.1.39 allows a Sandbox Escape because $smarty.templateobject can be accessed in sandbox mode CVE-2021-26119. Smarty before 3.1.39 allows code injection via an unexpected function name after a function name= substring CVE-2021-26120...
Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
The host is installed with Active Perl and is prone to multiple code injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbactiveperlmaketextmultcodeinjevulnwin.nasl 6074 2017-05-05 09:03:14Z teissa $ Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities Windows...
Voxel Dot Net CBms 0.x - Multiple Code Injection Vulnerabilities
source: https://www.securityfocus.com/bid/4957/info It has been reported that multiple vulnerabilities exist in CBMS. Reportedly, it is possible to inject both JavaScript and SQL code into the system. It may be possible to execute script code within the context of the site as an authenticated...