864 matches found
EUVD-2025-24156
Malicious code in bioql PyPI...
EUVD-2022-51598
Malicious code in bioql PyPI...
EUVD-2025-17554
Malicious code in bioql PyPI...
EUVD-2025-24165
Malicious code in bioql PyPI...
EUVD-2022-0252
Malicious code in bioql PyPI...
EUVD-2025-16333
Malicious code in bioql PyPI...
EUVD-2025-10422
Malicious code in bioql PyPI...
EUVD-2022-0249
Malicious code in bioql PyPI...
EUVD-2025-24628
Malicious code in bioql PyPI...
EUVD-2025-24166
Malicious code in bioql PyPI...
EUVD-2022-35599
Malicious code in bioql PyPI...
EUVD-2023-59139
Malicious code in bioql PyPI...
Missing Authentication for Critical Function
Overview litellm is a Library to easily interface with LLM API providers Affected versions of this package are vulnerable to Missing Authentication for Critical Function via sensitive in-memory cache debug endpoints. An unauthenticated attacker can access sensitive cached information by accessing...
CVE-2025-41716
The web application allows an unauthenticated remote attacker to learn information about existing user accounts with their corresponding role due to missing authentication for critical function...
CVE-2025-41716
The web application allows an unauthenticated remote attacker to learn information about existing user accounts with their corresponding role due to missing authentication for critical function...
CVE-2025-41716
CVE-2025-41716 describes an unauthenticated information disclosure where a remote attacker can enumerate existing user accounts and their roles due to missing authentication for a critical function. Connected sources reference WAGO Device Sphere and WAGO Solution Builder as affected, describing a...
PT-2025-39238
Name of the Vulnerable Software and Affected Versions Web Application affected versions not specified Description The web application has a flaw that allows an unauthenticated remote attacker to gather information about existing user accounts, including their roles, due to a lack of authenticatio...
GO-2025-3951 Chaos Mesh's Chaos Controller Manager is Missing Authentication for Critical Function in github.com/chaos-mesh/chaos-mesh
Chaos Mesh's Chaos Controller Manager is Missing Authentication for Critical Function in github.com/chaos-mesh/chaos-mesh. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positiv...
CVE-2025-7405
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to read or write the device values of the product and stop the operation of the programs, since MODBUS/TCP in the products does not...
Mitsubishi Electric MELSEC iQ-F Series CPU 访问控制错误漏洞
The Mitsubishi Electric MELSEC iQ-F Series CPUs are a series of CPU modules from Mitsubishi Electric Corporation Mitsubishi Electric, Japan. An access control error vulnerability exists in the Mitsubishi Electric MELSEC iQ-F Series CPUs, which stems from a lack of authentication of a critical...