112 matches found
EUVD-2023-42881
Malicious code in bioql PyPI...
EUVD-2022-0142
Malicious code in bioql PyPI...
EUVD-2024-53721
Malicious code in bioql PyPI...
EUVD-2024-36176
Malicious code in bioql PyPI...
EUVD-2023-40842
Malicious code in bioql PyPI...
EUVD-2024-21715
Malicious code in bioql PyPI...
Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Sandbox escape due to use-after-free in the Graphics: Canvas2D component CVE-2025-10527 firefox: thunderbird: Incorrect boundary conditions in the JavaScript: GC component CVE-2025-10532 firefox:...
PT-2025-30766 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the KVM component related to the validation of the num cpu value received from user space for LoongArch architecture. Insufficient validation of t...
CVE-2025-30085
The CVE-2025-30085 entry describes a remote code execution flaw in RSForm!pro for Joomla (versions 3.0.0–3.3.14) arising from the submission export feature. The issue requires administrative access to the export function, and could allow code execution on affected servers. Documented mitigations ...
BIT-MARIADB-MIN-2022-32084
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component subselect...
PT-2025-22860 · Wcms · Wcms
Name of the Vulnerable Software and Affected Versions: WCMS versions up to 8.3.11 Description: A critical issue has been found in the Login component, specifically affecting the getMemberByUid function. The manipulation of the uid argument leads to improper authentication, allowing for remote...
CVE-2024-57784
An issue in the component /php/scriptuploads.php of Zenitel AlphaWeb XE v11.2.3.10 allows attackers to execute a directory traversal...
CVE-2024-57775
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component getWorkFlowHis?insid...
CVE-2023-22002
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2023-30380
An issue in the component /dialog/selectmedia.php of DedeCMS v5.7.107 allows attackers to execute a directory traversal...
CVE-2023-2978
A vulnerability was found in Abstrium Pydio Cells 4.2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Change Subscription Handler. The manipulation leads to authorization bypass. The exploit has been disclosed to the public and may be use...
CVE-2022-28009
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\attendancedelete.php...
CVE-2010-2037
Directory traversal vulnerability in the Percha Downloads Attach comperchadownloadsattach component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. dot dot in the controller parameter to index.php...
Ubuntu: Security Advisory (USN-7482-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2025-18599 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the KVM Kernel-based Virtual Machine component. The issue arises when the gfn to pfn cache is inactive, and KVM fails ...