EUVD-2020-6445

Malware in sbrugna...

EUVD-2018-2970

Malware in sbrugna...

EUVD-2018-13497

Malware in sbrugna...

EUVD-2020-23344

Malware in sbrugna...

EUVD-2020-25916

Malware in sbrugna...

EUVD-2017-7873

Malware in sbrugna...

EUVD-2000-0940

Malware in sbrugna...

EUVD-2022-1314

Malicious code in bioql PyPI...

EUVD-2022-5491

Malicious code in bioql PyPI...

EUVD-2025-22113

Malicious code in bioql PyPI...

EUVD-2022-7150

Malicious code in bioql PyPI...

EUVD-2024-36569

Malicious code in bioql PyPI...

CVE-2025-39889

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This is required for passing GAP/SEC/SEM/BI-04-C PTS test case: Security Mode 4 Level 4, Responder - Invalid Encryption Key Size - 128 bit This tests the security...

CVE-2025-52924

In One Identity OneLogin before 2025.2.0, the SQL connection "application name" is set based on the value of an untrusted X-RequestId HTTP request header...

CVE-2025-52553

authentik is an open-source identity provider. After authorizing access to a RAC endpoint, authentik creates a token which is used for a single connection and is sent to the client in the URL. This token is intended to only be valid for the session of the user who authorized the connection, howev...

CVE-2021-32645

Tenancy multi-tenant is an open source multi-domain controller for the Laravel web framework. In some situations, it is possible to have open redirects where users can be redirected from your site to any other site using a specially crafted URL. This is only the case for installations where the...

CVE-2020-12889

MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case...

CVE-2025-26326

A vulnerability was identified in the NVDA Remote version 2.6.4 and Tele NVDA Remote version 2025.3.3 remote connection add-ons, which allows an attacker to obtain total control of the remote system by guessing a weak password. The problem occurs because these add-ons accept any password entered ...

PT-2025-3081 · Teedy · Teedy

Name of the Vulnerable Software and Affected Versions: Teedy versions 1.9 through 1.12 Description: The issue arises when the LDAP connection is activated, allowing an unauthenticated attacker to exploit the username field of the login form due to improper sanitization of user input. This enables...

CVE-2024-45337

Applications and libraries which misuse connection.serverAuthenticate via callback field ServerConfig.PublicKeyCallback may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that "A call to this function does not guarantee that the key offered is...