223 matches found
Drupal Core - Anonymous SQL Injection via PostgreSQL Entity Query
Drupal core from 8.9.0 before 10.4.10, 10.5.0 before 10.5.10, 10.6.0 before 10.6.9, 11.0.0 before 11.1.10, 11.2.0 before 11.2.12, and 11.3.0 before 11.3.10 contains an SQL injection caused by improper neutralization of special elements in SQL commands, letting attackers execute arbitrary SQL...
Exploit for Missing Authentication for Critical Function in Cpanel
CVE-2026-41940 ⚠ This tool is created solely for education...
Exploit for CVE-2026-8836
CVE-2026-8836 — lwIP SNMPv3 Stack Overflow PoC Proof of conce...
CVE-2026-9082
creationtimestamp| type| source ---|---|--- 2026-05-20 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/drupal-remote-code-execution-vulnerability20260521 2026-05-20 18:43:04+00:00| seen|...
CVE-2026-40343
free5GC UDR is the user data repository UDR for free5GC, an an open-source project for 5th generation 5G mobile core networks. In versions up to and including 1.4.2, a fail-open request handling flaw in the UDR service causes the /nudr-dr/v2/policy-data/subs-to-notify POST handler to continue...
CVE-2026-28767 Gardyn Cloud API Missing Authentication for Critical Function
A specific administrative endpoint notifications is accessible without proper authentication...
CVE-2026-23940
Uncontrolled Resource Consumption vulnerability in hexpm hexpm/hexpm allows Excessive Allocation. Publishing an oversized package can cause Hex.pm to run out of memory while extracting the uploaded package tarball. This can terminate the affected application instance and result in a denial of...
CVE-2026-26273
Known is a social publishing platform. Prior to 1.6.3, a Critical Broken Authentication vulnerability exists in Known 1.6.2 and earlier. The application leaks the password reset token within a hidden HTML input field on the password reset page. This allows any unauthenticated attacker to retrieve...
OESA-2026-1002 gimp security update
The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...
CVE-2018-10977
In 2345 Security Guard 3.7, the driver file 2345BdPcSafe.sys, X64 version allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCTL 0x002220E4...
PT-2025-50907
Name of the Vulnerable Software and Affected Versions PenciDesign Soledad versions n/a through 8.6.9 Description A flaw exists in PenciDesign Soledad that allows for privilege escalation. This allows subscribers to take over WordPress sites. Recommendations Update PenciDesign Soledad to a version...
Exploit for CVE-2025-11171
CVE-2025-11171: Missing Authentication in Chartify WordPress Plu...
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks
Oracle has released an emergency update to address a critical security flaw in its E-Business Suite software that it said has been exploited in the recent wave of Cl0p data theft attacks. The vulnerability, tracked as CVE-2025-61882 CVSS score: 9.8, concerns an unspecified bug that could allow an...
EUVD-2025-15644
Malicious code in bioql PyPI...
EUVD-2023-3010
Malicious code in bioql PyPI...
EUVD-2024-47891
Malicious code in bioql PyPI...
EUVD-2023-41923
Malicious code in bioql PyPI...
EUVD-2023-59290
Malicious code in bioql PyPI...
EUVD-2024-16768
Malicious code in bioql PyPI...
EUVD-2023-12653
Malicious code in bioql PyPI...