Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times

Cybersecurity researchers have discovered a malicious package on the Python Package Index PyPI repository that masquerades as a seemingly harmless Discord-related utility but incorporates a remote access trojan. The package in question is discordpydebug, which was uploaded to PyPI on March 21,...

Cisco IOS XE 代码问题漏洞

Cisco IOS XE is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A code issue vulnerability exists in Cisco IOS XE that stems from insufficient input...

PT-2025-19883 · Qualcomm · Snapdragon +34

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to memory corruption that occurs while processing an escape code. This happens when the DisplayId is passed with a large unsigned value. Recommendations: At the moment,...

CVE-2025-24270

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An attacker on the local network may be able to leak sensitive user information...

CVE-2025-46580

There is a code-related vulnerability in the GoldenDB database product. Attackers can access system tables to disrupt the normal operation of business SQL...

CVE-2025-46580

There is a code-related vulnerability in the GoldenDB database product. Attackers can access system tables to disrupt the normal operation of business SQL...

CVE-2025-46580

CVE-2025-46580 concerns GoldenDB, a distributed database from ZTE. The connected documents describe a code-related vulnerability that allows attackers to access system tables, leading to disruption of business SQL operations. No specific vulnerable component, software version, or root-cause detai...

Sourceforge Xfig 代码问题漏洞

Sourceforge Xfig is an open source charting tool from Sourceforge. A code issue vulnerability exists in Sourceforge Xfig that stems from a stack overflow that occurs when running fig2dev, resulting in memory corruption...

CVE-2025-29015

Code Astro Internet Banking System 2.0.0 is vulnerable to Cross Site Scripting XSS via the name parameter in /admin/pagesaccount.php...

CVE-2025-29015

CVE-2025-29015 affects Code Astro Internet Banking System 2.0.0. The vulnerability is an Cross Site Scripting (XSS) flaw that can be triggered via the name parameter in /admin/pages_account.php, allowing script injection. The issue is documented with CVSS v3.1 base metrics: AV:N/AC:L/PR:N/UI:R/S:...

Wyse Management Suite Code Issue Vulnerability

The Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints, providing centralized management, asset tracking and automated device discovery. A code issue vulnerability exists in Wyse Management Suite. The vulnerability stems from the program failing to adequately...

OPEN BizRobo! 代码问题漏洞

OPEN BizRobo! is a business robot software from OPEN. A code issue vulnerability exists in OPEN BizRobo! that stems from the fact that deserializing untrusted data could lead to arbitrary code execution...

Subnet Solutions PowerSYSTEM Center 代码问题漏洞

Subnet Solutions PowerSYSTEM Center is a power solution from Subnet Solutions, Inc. A code issue vulnerability exists in Subnet Solutions PowerSYSTEM Center that stems from mishandling of an exception condition could result in a denial of service...

WordPress plugin WP Remote Thumbnail 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

Juniper Networks Junos OS SRX 代码问题漏洞

Juniper Networks Junos OS SRX is a Juniper Networks, Inc. network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS SRX that stems from the...

WordPress plugin Squeeze 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

Adobe Framemaker 代码问题漏洞

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A code issue vulnerability exists in Adobe Framemaker that originates from a null pointer dereference, which can b...

Microsoft Visual Studio 代码问题漏洞

Microsoft Visual Studio is a family of development tool suites and a largely complete set of development tools from Microsoft Corporation USA that includes most of the tools needed throughout the software lifecycle. A code issue vulnerability exists in Microsoft Visual Studio. An attacker could...

SourceCodester Web-based Pharmacy Product Management System 代码问题漏洞

SourceCodester Web-based Pharmacy Product Management System is a SourceCodester open source Web-based pharmacy product management system. A code issue vulnerability exists in version 1.0 of the SourceCodester Web-based Pharmacy Product Management System, which stems from an incorrect manipulation...

BIT-DOLIBARR-2023-30253

Dolibarr before 17.0.1 allows remote code execution by an authenticated user via an uppercase manipulation: ?PHP instead of ?php in injected data...