PT-2026-40669

Name of the Vulnerable Software and Affected Versions BIG-IP versions prior to 17.1.3.2 BIG-IP versions prior to 17.5.1.6 BIG-IP versions prior to 21.0.0.2 BIG-IQ versions prior to 17.1.3.2 BIG-IQ versions prior to 17.5.1.6 BIG-IQ versions prior to 21.0.0.2 Description A highly privileged,...

MAL-2025-159862 Malicious code in mansila-toafgviala-madasaakofio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f100bfb396967c1b0da9ff7559f0ac447bc59862d27f3a07522cd95627598bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-133255 Malicious code in evident_wolverine_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfe9ec23a2f253110eba01dd3cc06476eb2913513fb0f6b40089f2b80dd41bb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in efficient_takin_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8be1ea3653969d8da982e93705904121205383594e7d1142b51ca7cf11ecd524 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in medical_jay_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14941040aea32c87ba23e86f3cc18e9d8f39bfae44e5abcae93ca961c3fda2c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CVE-2002-1981

Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the "public" role to execute the 1 spMSSetServerProperties or 2 spMSsetalertinfo stored procedures, which allows attackers to modify configuration including SQL server startup and alert settings...

PT-2025-20057 · Samsung · Samsung Flow

Name of the Vulnerable Software and Affected Versions: Samsung Flow versions prior to 4.9.17.6 Description: The issue is related to improper verification of intent by a broadcast receiver, allowing local attackers to modify the configuration. This could potentially lead to unauthorized changes in...

Design/Logic Flaw

SINAMICS medium voltage routable products are affected by a vulnerability in the Sm@rtServer component for remote access that could allow an unauthenticated attacker to cause a denial-of-service condition, and/or execution of limited configuration modifications and/or execution of limited control...

CVE-2021-27388

The CVE-2021-27388 entry affects Siemens SINAMICS medium voltage remote-access products (SINAMICS SL150, SM150, SM150i). A vulnerability in the Sm@rtServer component allows unauthenticated remote access that can cause a denial-of-service and may enable limited configuration modifications or execu...

Fastweb FASTGate 0.00.47 - Cross-site Request Forgery

Exploit for hardware platform in category web applications Exploit Title: Fastweb FASTgate 0.00.47 CSRF Exploit Authors: Raffaele Sabato Contact: https://twitter.com/syrion89 Vendor: Fastweb Product Web Page: http://www.fastweb.it/adsl-fibra-ottica/dettagli/modem-fastweb-fastgate/ Version: 0.00.4...

IDS IPS Testing Framework: pytbull

pytbull is an Intrusion Detection/Prevention System IDS/IPS Testing Framework for Snort, Suricata and any IDS/IPS that generates an alert file. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to...

SA113 : January 2016 NTP Security Vulnerabilities

SUMMARY Blue Coat products using affected versions of the NTP software distribution from ntp.org are susceptible to multiple vulnerabilities. A remote attacker may exploit these vulnerabilities to set the victim's system time to an arbitrary value or cause it to become out of sync. The attacker c...

Seyeon FlexWATCH Network Video Server 2.2 Unauthorized Administrative Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8942/info It has been reported that FlexWATCH Network Video Server may be prone to an access validation error that may allow a remote attacker to gain administrative access to the system. The problem is reported to presen...

CVE-2008-7139

Multiple cross-site request forgery CSRF vulnerabilities in WS-Proxy in Eye-Fi 1.1.2 allow remote attackers to hijack the authentication of users for requests that modify configuration via a SOAPAction parameter of 1 urn:SetOptions for autostart, 2 urn:SetDesktopSync for file upload, or 3...

CVE-1999-1255

CVE-1999-1255 affects Hyperseek. The vulnerability allows a remote attacker to modify the Hyperseek configuration by directly invoking the admin.cgi program with an edit_file action parameter. Per the records, this is a network-exposed issue with no authentication required, enabling an integrity ...