14 matches found
EUVD-2020-26479
Malware in sbrugna...
EUVD-2000-0666
Malware in sbrugna...
EUVD-2025-22380
Malicious code in bioql PyPI...
CVE-2021-43806
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments. In affected versions Tuleap does not sanitize properly user settings when constructing the SQL query to browse and search commits in the CVS repositories. A authenticated malicious user with...
CVE-2021-43806
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments. In affected versions Tuleap does not sanitize properly user settings when constructing the SQL query to browse and search commits in the CVS repositories. A authenticated malicious user with...
CVE-2021-41155
CVE-2021-41155 affects Tuleap: SQL injection in the CVS revisions browser due to improper input sanitization. Affected fixes are Tuleap Community Edition 11.17.99.146, Tuleap Enterprise Edition 11.17-5, and Tuleap Enterprise Edition 11.16-7. The vulnerability arises when constructing SQL queries ...
MGASA-2020-0221 Updated viewvc packages fix security vulnerability
Updated viewvc package fixes security vulnerability: ViewVC before versions 1.1.28 has an XSS vulnerability in CVS showsubdirlastmod support. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges to a CVS repository exposed by an otherwise trusted...
UBUNTU-CVE-2020-5283
ViewVC before versions 1.1.28 and 1.2.1 has a XSS vulnerability in CVS showsubdirlastmod support. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges to a CVS repository exposed by an otherwise trusted ViewVC instance that also has the...
id3lib ID3 Tags Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26945/info The 'id3lib' library is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the affected application or to crash the...
Secunia Research: libmikmod Module Parsing Vulnerabilities
====================================================================== Secunia Research 05/02/2010 - libmikmod Module Parsing Vulnerabilities - ====================================================================== Table of Contents Affected...
[Full-disclosure] Secunia Research: OpenSG Radiance RGBE Buffer Overflow Vulnerability
====================================================================== Secunia Research 20/01/2009 - OpenSG Radiance RGBE Buffer Overflow Vulnerability - ====================================================================== Table of Contents Affected...
id3lib ID3 Tags - Buffer Overflow
id3lib ID3 Tags - Buffer Overflow // source: https://www.securityfocus.com/bid/26945/info The 'id3lib' library is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the affected application or to crash the...
CVE-2000-0670
CVE-2000-0670 affects CVSWeb 1.80. The cvsweb CGI script allows remote attackers with write access to a CVS repository to execute arbitrary shell commands. This is a local-style attack vector with the attacker authenticated to the CVS repository, and the impact is arbitrary command execution in t...
CVSWeb Developer CVSWeb 1.80 - Insecure Perl open Code Execution
CVSWeb Developer CVSWeb 1.80 - Insecure Perl open Code Execution source: https://www.securityfocus.com/bid/1469/info Cvsweb 1.80 makes an insecure call to the perl OPEN function, providing attackers with write access to a cvs repository the ability to execute arbitrary commands on the host machin...