7310 matches found
PT-2025-34684 · Ruoyi-Go · Ruoyi-Go
Name of the Vulnerable Software and Affected Versions: ruoyi-go versions up to 2.1 Description: A weakness exists in the SelectListByPage function of the modules/system/dao/GenTableDao.go file. Manipulation of the isAsc/orderByColumn argument can lead to SQL injection. This issue is potentially...
PT-2025-34690 · Ruoyi-Go · Ruoyi-Go
Name of the Vulnerable Software and Affected Versions: ruoyi-go versions up to 2.1 Description: A vulnerability exists in the SelectListByPage function within the modules/system/dao/DictDataDao.go file. Manipulation of the orderByColumn and isAsc arguments can lead to SQL injection. This issue is...
PT-2025-34697 · Ruoyi-Go · Ruoyi-Go
Name of the Vulnerable Software and Affected Versions: ruoyi-go versions up to 2.1 Description: A flaw has been found in the SelectListByPage function of the modules/system/system router.go file. Manipulation of the orderByColumn and isAsc arguments can lead to SQL injection. The attack may be...
PT-2025-34687 · Lostvip Com · Ruoyi-Go
Name of the Vulnerable Software and Affected Versions: lostvip-com ruoyi-go versions up to 2.1 Description: A security issue exists in the SelectPageList function within the modules/system/service/LoginInforService.go file. Manipulation of the isAsc argument can lead to SQL injection. This issue ...
CVE-2025-9102
The CVE-2025-9102 issue affects 1&1 Mail & Media mail.com App (Android) version 8.8.0, specifically the AndroidManifest.xml of component com.mail.mobile.android.mail. Root cause: improper export of Android application components, enabling a local attacker to trigger an attack on the localhost. Pu...
CVE-2025-9093
A security vulnerability has been detected in BuzzFeed App 2024.9 on Android. This affects an unknown part of the file AndroidManifest.xml of the component com.buzzfeed.android. The manipulation leads to improper export of android application components. The attack needs to be approached locally...
PT-2025-33518 · WordPress · Ithemes Serverbuddy
Name of the Vulnerable Software and Affected Versions: iThemes ServerBuddy versions n/a through 1.0.5 Description: A Cross-Site Request Forgery CSRF vulnerability exists in iThemes ServerBuddy by PluginBuddy.Com, allowing Object Injection. Recommendations: At the moment, there is no information...
Malicious code in @zalastax/nolb-com_w (npm)
The package @zalastax/nolb-comw was found to contain malicious code...
Malicious code in eaze.com (npm)
The package eaze.com was found to contain malicious code...
Malicious code in @com-td-aacs/td (npm)
The package @com-td-aacs/td was found to contain malicious code...
Malicious code in @zalastax/nolb-com (npm)
The package @zalastax/nolb-com was found to contain malicious code...
Malicious code in @zalastax/nolb-com_d (npm)
The package @zalastax/nolb-comd was found to contain malicious code...
Malicious code in airship.com (npm)
The package airship.com was found to contain malicious code...
Malicious code in begin.com (npm)
The package begin.com was found to contain malicious code...
Malicious code in com.digmap.voicerecog (npm)
The package com.digmap.voicerecog was found to contain malicious code...
Malicious code in com.unity.standardevents (npm)
The package com.unity.standardevents was found to contain malicious code...
Malicious code in com.unity.ugui (npm)
The package com.unity.ugui was found to contain malicious code...
Malicious code in en.ephoto360.com (npm)
The package en.ephoto360.com was found to contain malicious code...
Malicious code in fleet.vimcar.com (npm)
The package fleet.vimcar.com was found to contain malicious code...
Malicious code in uolpainelcloud-painelcloud-host-uol-com-br (npm)
The package uolpainelcloud-painelcloud-host-uol-com-br was found to contain malicious code...