EUVD-2026-32892

Plack::Middleware::Security::Common versions before 0.13.1 for Perl did not block header injections in request paths. The header injection rule was ineffective at blocking header injections in the request paths unless they were double-encoded, for example, GET /path\r\nHTTP/1.1\r\nHost:...

CVE-2026-5973

The CVE-2026-5973 entry concerns FoundationAgents MetaGPT up to version 0.8.1. Affected component: the get_mime_type function in metagpt/utils/common.py. Root cause: input handling within that function allows OS command injection, enabling remote execution. Exploit status: public; exploitation po...

Ruijie X30 PRO 安全漏洞

Ruijie X30 PRO is a home wireless router from China's Ruijie Ruijie. A security vulnerability exists in the Ruijie X30 PRO that stems from improper handling of a specially crafted POST request for pwdmodify in the file /usr/lib/lua/luci/modules/common.lua, which could result in the execution of...

PT-2025-50672

Name of the Vulnerable Software and Affected Versions Ruijie RG-YST AP versions 3.01B11P280YST250F Description An OS Command Injection issue exists in Ruijie RG-YST AP. An attacker can execute arbitrary commands by sending a specially crafted POST request to the /usr/lib/lua/luci/modules/common.l...

EUVD-2021-19461

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2024-42100

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: common: Don't call hwtoccucommon on hw without common In order to set the rat...

PT-2023-20567 · Covesa +1 · Dlt-Daemon +1

Name of the Vulnerable Software and Affected Versions: dlt-daemon versions through 2.18.8 Description: An issue was discovered in the Connected Vehicle Systems Alliance COVESA; formerly GENIVI dlt-daemon. Dynamic memory is not released after it is allocated in dlt-control-common.c. Recommendation...

Drupalgeddon 2

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations. Recent assessments: J3rryBl4nks at March 03, 2020 3:50pm UTC reported:...

Trend Micro Anti-Rootkit Common Module fails to properly restrict access to the "\\.\TmComm" DOS device interface

Overview A vulnerability exists in Trend Micro's Anti-Rootkit Common Module that may allow a local attacker to gain elevated privileges. Description Trend Micro AntiVirus is a virus scanner for Microsoft Windows and Linux. The Trend Micro Anti-Rootkit Common Module is included with Trend Micro...