MAL-2025-2394 Malicious code in newland-digitization-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35b5f032125648b5b2cad6fb57b4fcf1c6ab755e93b9ca9640fc85e041bed665 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in newland-digitization-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35b5f032125648b5b2cad6fb57b4fcf1c6ab755e93b9ca9640fc85e041bed665 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

linqi 安全漏洞

linqi is a process digitization program from linqi, Inc. A security vulnerability exists in linqi versions prior to 1.4.0.1 that stems from the presence of a hash leak...

linqi 安全漏洞

linqi is a process digitization program from linqi, Inc. A security vulnerability exists in linqi versions prior to 1.4.0.1, which stems from the presence of hard-coded passwords...

Unauthorized Access Vulnerability in Jianguoyun-Engineering Digitization Cloud Platform of Zhuhai Enterprise Surplus Information Technology Co.

Zhuhai Enterprise Information Technology Co., Ltd. focuses on the development and operation services of the SaaS platform Jian Guo Yun for the digital intelligence of the engineering and construction industry. There is an unauthorized access vulnerability in the Engineering Digital Cloud Platform...

When Being Attractive Gets Risky - How Does Your Attack Surface Look to an Attacker?

In the era of digitization and ever-changing business needs, the production environment has become a living organism. Multiple functions and teams within an organization can ultimately impact the way an attacker sees the organization's assets, or in other words, the external attack surface. This...

Miele appWash Access Control Error Vulnerability

Miele appWash is a laundry room digitization app from Miele Germany. Miele appWash suffers from an Access Control Error vulnerability that stems from the use of an API endpoint to bypass authorization checks. An attacker could use this vulnerability to gain read and partial write access to data...

otris Update Manager 授权问题漏洞

otris Update Manager is used by otris for compliance digitization. A security vulnerability exists in otris Update Manager 1.2.1.0 that allows local users to gain access to SYSTEM via unauthenticated calls and allows remote attacks on HTTP traffic on TCP port 9000 using WsHTTPBinding...

The vulnerability of the cloud-based video digitization, annotation, and format conversion application for Adobe Prelude lies in insufficient validation of input data, allowing a perpetrator to execute arbitrary code.

The vulnerability of the cloud-based application for video digitization, annotation, and format conversion in Adobe Prelude is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the cloud-based video conversion, annotation, and format conversion application for Adobe Prelude involves writing data beyond the buffer boundaries into memory, allowing an attacker to execute arbitrary code.

The vulnerability of the cloud-based application for video digitization, annotation, and format conversion in Adobe Prelude involves writing data beyond the buffer boundaries into memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

UFIDA's Large Enterprise Digitization Platform Has Logic Flaw Vulnerabilities

UFIDA is a leading provider of management software, ERP software, group management software, human resource management software, customer relationship management software, small business management software, financial and administrative institution management software, automotive industry...

The vulnerability of the cloud-based application for video digitization, annotation, and format conversion in Adobe Prelude lies in the recording beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the cloud-based application for video digitization, annotation, and Adobe Prelude format conversion involves writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the context of the current use...

The vulnerability of the cloud-based application for video digitization, annotation, and format conversion in Adobe Prelude lies in the recording beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the cloud-based application for video digitization, annotation, and Adobe Prelude format conversion involves writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the context of the current use...

Cyberattacks Evolve as the Hospitality and Travel Industry Adapts

While the world fights against the COVID-19 pandemic, cybercriminals are out in full force with a multitude of scams designed to take advantage of the confusion and panic. COVID-19 has -- by necessity -- made us all more comfortable working, playing, and buying online. This global shift to digita...

Why Application Security Should Be Considered An Enabler For Business

If you ask Alex, he won't admit being old-fashioned. He has been working in the IT industry for a while now and accepts that security is important for the business's health. But reluctant to take security as the business enabler. In today's environment, moving to digitization is a critical step...

SQL Injection Vulnerability in Education Industry Digitization Solution of Beijing Kuangyi Technology Co.

Beijing Kuangxiang Technology Co., Ltd. digital solution for the education industry is a full-stack artificial intelligence solution for schools and kindergartens. A SQL injection vulnerability exists in the Education Industry Digital Solution of Beijing Kuangyi Technology Co. Ltd, which can be...

Physician, protect thyself: healthcare cybersecurity circling the drain

No one knows you better than you do. But thanks to technology advances and the continued digitization of healthcare data accumulation and sharing processes, we can also honestly say the same about your healthcare provider. Indeed, every time we get in touch with a health professional, data is...

secure.worc.ac.uk XSS vulnerability

Vulnerable URL: https://secure.worc.ac.uk/cgi-bin/library/digitization/login.pl?errmsg=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 11:49 GMT Vulnerability type:| XSS Vulnerability status:|...