Tabby 操作系统命令注入漏洞

Tabby Terminus is a highly configurable terminal emulator, SSH, and serial client developed by Eugene’s individual developers. Versions prior to Tabby 1.0.233 contained an operating system command injection vulnerability. This vulnerability stemmed from the automatic detection of the ZMODEM...

GO-2026-4635 CoreDNS Loop Detection Denial of Service Vulnerability in github.com/coredns/coredns

CoreDNS Loop Detection Denial of Service Vulnerability in github.com/coredns/coredns...

EUVD-2019-0801

Malware in sbrugna...

EUVD-2021-13976

Malware in sbrugna...

EUVD-2018-1242

Malware in sbrugna...

EUVD-2025-14950

Malicious code in bioql PyPI...

EUVD-2023-25485

Malicious code in bioql PyPI...

EUVD-2021-3613

Malicious code in bioql PyPI...

EUVD-2021-3606

Malicious code in bioql PyPI...

EUVD-2021-3609

Malicious code in bioql PyPI...

EUVD-2022-2067

Malicious code in bioql PyPI...

VMware Spring Framework <= 5.3.44, 6.0.0 - 6.1.22, 6.2.0 - 6.2.10 Annotation Detection Vulnerability - Windows

The VMware Spring Framework is prone to an annotation detection vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2025-52496

Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery...

CVE-2020-9963

The issue was addressed with improved handling of icon caches. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A malicious app may be able to determine the existence of files on the computer...

CVE-2025-30916 WordPress Residential Address Detection plugin <= 2.5.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in enituretechnology Residential Address Detection residential-address-detection allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Residential Address Detection: from n/a through = 2.5.4...

Linux Distros Unpatched Vulnerability : CVE-2023-4754

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Write in GitHub repository gpac/gpac prior to 2.3-DEV. CVE-2023-4754 Note that Nessus relies on the presence of the package as reported by the...

CVE-2022-49616

In the Linux kernel, the following vulnerability has been resolved: ASoC: rt7-sdw: harden jackdetecthandler Realtek headset codec drivers typically check if the card is instantiated before proceeding with the jack detection. The rt700, rt711 and rt711-sdca are however missing a check on the card...

The vulnerability of the Format Detection component of the Mojolicious module for Perl, which allows a hacker to cause a service failure.

The vulnerability of the Format Detection component in the Mojolicious module for Perl is related to errors during resource release. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the FortiSandbox system’s threat detection and mitigation mechanism arises from the lack of measures taken to protect the website structure. This allows attackers to execute arbitrary code.

The vulnerability of the FortiSandbox threat detection and mitigation system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PUB-A-193801134

In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interactio...