CVE-2025-13130 Radarr Service Radarr.Console.exe default permission

A vulnerability has been found in Radarr 5.28.0.10274. The affected element is an unknown function of the file C:\ProgramData\Radarr\bin\Radarr.Console.exe of the component Service. Such manipulation leads to incorrect default permissions. The attack can only be performed from a local environment...

PT-2025-46919

Name of the Vulnerable Software and Affected Versions Radarr version 5.28.0.10274 Description A security issue exists in Radarr version 5.28.0.10274 related to incorrect default permissions. This issue stems from manipulation of an unknown function within the file...

EUVD-2018-17322

Malware in sbrugna...

New catalog creation fails with error, "Invalid configuration for device '0'."

Unable to create new MCS catalogs with the image created via the ELM. The error being seen is. 15:15:38:91700,3852,3228,Citrix.MachineCreation.exe,0,MachineCreationServiceHCL,,0,,1,Error,"Create VM 'test-applay001' Failed with error PluginUtilities.Exceptions.ManagedMachineGeneralException: Inval...

HCL BigFix Platform 安全漏洞

HCL Technologies HCL BigFix Platform is a suite of endpoint security management platforms from HCL Technologies, USA. The platform supports automated discovery, management and remediation of endpoint security issues. A security vulnerability exists in HCL BigFix Platform that originates from a...

IBM Spectrum Protect Plus uploadHttpsCertificate Command Injection (CVE-2020-4241)

A command injection vulnerability exists in IBM Spectrum Protect Plus. The vulnerability is due to a lack of input validation in the Administrative Console service when parsing the filename parameter in the uploadHttpsCertificate method. A remote authenticated attacker could exploit this...

CVE-2018-5553

The connected advisories confirm CVE-2018-5553 affects Crestron Console services on DGE-100, DM-DGE-200-C, and TS-1542-C devices. The flaw enables remote command injection via the PING command due to improper input validation, allowing code execution with root privileges. Exploitation requires no...

Moxa AWK-3131A Operating System Command Injection Vulnerability

Moxa AWK-3131A is a wireless access device from Moxa. An operating system command injection vulnerability exists in the Telnet, SSH, and console login functions of the Moxa AWK-3131A using firmware versions 1.4 through 1.7. A remote attacker can exploit this vulnerability to execute root OS...

See how I found the Github Enterprise version of the application SQL injection vulnerabilities and get 5000 dollars Bounty-vulnerability warning-the black bar safety net

GitHub Enterprise Edition software is designed for company groups to deploy in the internal network for the development of services of commercial application. Github enterprise uses the standard OVF format integrated to a virtual machine（VM）mirror, can be in the enterprise. github. com website...

SUSE-SU-2016:2476-1 Security update for systemd

This update for systemd fixes the following security issue: - CVE-2016-7796: A zero-length message received over systemd's notification socket could make managerdispatchnotifyfd return an error and, as a side effect, disable the notification handler completely. As the notification socket is...