CVE-2025-61776 Dependency-Track possibly discloses private NuGet repository credentials to api.nuget.org

Dependency-Track is a component analysis platform that allows organizations to identify and reduce risk in the software supply chain. Prior to version 4.13.5, Dependency-Track may send credentials meant for a private NuGet repository to api.nuget.org via the HTTP Authorization header, and may...

CVE-2025-61776 Dependency-Track possibly discloses private NuGet repository credentials to api.nuget.org

Dependency-Track is a component analysis platform that allows organizations to identify and reduce risk in the software supply chain. Prior to version 4.13.5, Dependency-Track may send credentials meant for a private NuGet repository to api.nuget.org via the HTTP Authorization header, and may...

EulerOS 2.0 SP8 : wget (EulerOS-SA-2025-1130)

According to the versions of the wget package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data...

Ubuntu Budgie Extras Security Vulnerability

Ubuntu Budgie Extras is a package in the Ubuntu Budgie open source. A security vulnerability exists in Ubuntu Budgie Extras that stems from temporary data passed between application components that could be viewed or manipulated...

SUSE CVE-2013-6629

The getsos function in jdmarker.c in 1 libjpeg 6b and 2 libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan SOS JPEG markers,...

CVE-2022-22881

Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /sys/user/queryUserComponentData...

CVE-2022-22881

Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /sys/user/queryUserComponentData...

CVE-2022-22881

Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /sys/user/queryUserComponentData...

Google Android 信息泄露漏洞

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that stems from a configuration error in the network system or product during operation. An attacker could use the vulnerability to obtain sensiti...

Scrapy 信息泄露漏洞

Scrapy is a free and open source web crawler framework written in Python. Scrapy Scrapy-splash suffers from an information disclosure vulnerability that originates from errors such as configuration during operation of a networked system or product. An unauthorized attacker can exploit the...

Google Android Information Disclosure Vulnerability

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android OS There is an information disclosure vulnerability, the vulnerability stems from the network system or product in the operation process there are configuration and other...

Zoho ManageEngine Desktop Central Information Disclosure Vulnerability (CNVD-2020-20678)

ZOHO ManageEngine Desktop Central DC is a desktop management solution from ZOHO. The solution includes software distribution, patch management, system configuration, remote control and other functional modules to support the entire lifecycle of desktop and server management. An information...

Magento Information Disclosure Vulnerability (CNVD-2019-36993)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. An information disclosure vulnerability exists in Magento Open Source versions prior to 1.9.4.3 and Magento...

Google Android Framework Information Disclosure Vulnerability (CNVD-2019-39727)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA, of which Framework is a component of the Android framework. An information disclosure vulnerability exists in Framework in Android. The vulnerability stems from errors such as configuration durin...

Google Android Information Disclosure Vulnerability (CNVD-2019-37942)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. System in Android Q suffers from an information disclosure vulnerability. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker...

Google Android Information Disclosure Vulnerability (CNVD-2019-37945)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. An information disclosure vulnerability exists in System in Android Q. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker cou...

Google Android Information Disclosure Vulnerability (CNVD-2019-38545)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. An information disclosure vulnerability exists in System in Android. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker could...

Google Android Information Disclosure Vulnerability (CNVD-2019-28863)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. System in Android Q suffers from an information disclosure vulnerability. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker...

Google Android Media framework information disclosure vulnerability (CNVD-2019-38591)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. An information disclosure vulnerability exists in Media framework in Android Q. The vulnerability originates in a...

cPanel Information Disclosure Vulnerability (CNVD-2019-29718)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An information disclosure vulnerability exists in versions of cPanel prior to 68.0.15. The vulnerability stems from a configurati...