16179 matches found
EUVD-2000-0646
Malware in sbrugna...
EUVD-2020-7480
Malware in sbrugna...
EUVD-2017-17941
Malware in sbrugna...
EUVD-2018-1161
Malware in sbrugna...
EUVD-2004-0038
Malware in sbrugna...
EUVD-1999-1398
Malware in sbrugna...
EUVD-2018-3797
Malware in sbrugna...
EUVD-2003-0059
Malware in sbrugna...
EUVD-2013-6890
Malware in sbrugna...
CVE-2025-62186
Ankitects Anki before 25.02.5 allows a crafted shared deck on Windows to execute arbitrary commands when playing audio because of URL scheme mishandling...
CVE-2025-62186
Anki (Ankitects) on Windows is affected by CVE-2025-62186: versions prior to 25.02.5 are vulnerable to arbitrary command execution when playing audio via a crafted shared deck due to URL scheme mishandling. The root cause is improper handling of URL schemes in the shared deck workflow. Affected p...
EUVD-2025-32878
Ankitects Anki before 25.02.5 allows a crafted shared deck on Windows to execute arbitrary commands when playing audio because of URL scheme mishandling...
Planet WGR-500 安全漏洞
The Planet WGR-500 is a WiFi router from Planet in Taiwan, China. A security vulnerability exists in Planet WGR-500 v1.3411b190912, which stems from improper manipulation of the newpassword request parameter, which could lead to arbitrary command execution...
Planet WGR-500 安全漏洞
The Planet WGR-500 is a WiFi router from Planet in Taiwan, China. A security vulnerability exists in the Planet WGR-500 v1.3411b190912 version, which stems from improper manipulation of the counts request parameter, which could lead to arbitrary command execution...
Malicious code in @aviatrixdev/flight-suit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dc9bc5d34874a3f8d1af5ce792a55535218bde1497f02e6e1d0e0f7264a25d6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Directory Traversal
Overview zenml is a ZenML: Write production-ready ML code. Affected versions of this package are vulnerable to Directory Traversal via the load function in the PathMaterializer class during extraction of data.tar.gz archives. An attacker can overwrite arbitrary files, potentially leading to comma...
ZenML is vulnerable to Path Traversal through its `PathMaterializer` class
ZenML version 0.83.1 is affected by a path traversal vulnerability in the PathMaterializer class. The load function uses ispathwithindirectory to validate files during data.tar.gz extraction, which fails to effectively detect symbolic and hard links. This vulnerability can lead to arbitrary file...
CVE-2025-8406
ZenML version 0.83.1 is affected by a path traversal vulnerability in the PathMaterializer class. The load function uses ispathwithindirectory to validate files during data.tar.gz extraction, which fails to effectively detect symbolic and hard links. This vulnerability can lead to arbitrary file...
CVE-2025-8406
ZenML version 0.83.1 is affected by a path traversal vulnerability in the PathMaterializer class. The load function uses ispathwithindirectory to validate files during data.tar.gz extraction, which fails to effectively detect symbolic and hard links. This vulnerability can lead to arbitrary file...
PT-2025-40803
Name of the Vulnerable Software and Affected Versions ZenML version 0.83.1 Description The software contains a path traversal issue in the PathMaterializer class. The load function uses is path within directory to validate files during data.tar.gz extraction, which does not properly detect symbol...