4 matches found
CVE-2025-64759 Homarr is Vulnerable to Stored Cross-Site Scripting (XSS) and Possible Privilege Escalation via Malicious SVG Upload
Homarr is an open-source dashboard. Prior to version 1.43.3, stored XSS vulnerability exists, allowing the execution of arbitrary JavaScript in a user's browser, with minimal or no user interaction required, due to the rendering of a malicious uploaded SVG file. This could be abused to add an...
EUVD-2024-37924
Malicious code in bioql PyPI...
CVE-2025-1886
Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...
TotalECommerce <= 1.0 (index.asp id) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================= TotalECommerce http://victim/dir/index.asp?secao=PageID&id=SQL EXAMPLE 1 -...