Malicious Package

Overview dws-dx is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

MAL-2026-280 Malicious code in dws-dx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1848d83c748ccd9cbb44be0e7d1b8e97b061b5f8f5214616639aea3339b6058b The package dws-dx was found to contain malicious code. Source: ghsa-malware 1e1aaa27dc21f4ca10b5c3d7ae20cf56d8ede985793d6dd4654d34b1716b3d7b Any...

Malicious code in dws-dx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1848d83c748ccd9cbb44be0e7d1b8e97b061b5f8f5214616639aea3339b6058b The package dws-dx was found to contain malicious code. Source: ghsa-malware 1e1aaa27dc21f4ca10b5c3d7ae20cf56d8ede985793d6dd4654d34b1716b3d7b Any...

EUVD-2026-3075

Malicious code in dws-dx npm...

EUVD-2007-5350

Malware in sbrugna...

CVE-2011-10012

NetOp now part of Impero Software Remote Control Client v9.5 is vulnerable to a stack-based buffer overflow when processing .dws configuration files. If a .dws file contains a string longer than 520 bytes, the application fails to perform proper bounds checking, allowing an attacker to execute...

CVE-2011-10012 NetOp Remote Control Client 9.5 .dws File Buffer Overflow

NetOp now part of Impero Software Remote Control Client v9.5 is vulnerable to a stack-based buffer overflow when processing .dws configuration files. If a .dws file contains a string longer than 520 bytes, the application fails to perform proper bounds checking, allowing an attacker to execute...

CVE-2024-33335

SQL Injection vulnerability in H3C technology company SeaSQL DWS V2.0 allows a remote attacker to execute arbitrary code via a crafted file...

The vulnerability of the set_ws_action function in the /dws/api/ section of the Tenda DAP-1520 router’s software allows a hacker to execute arbitrary code.

The vulnerability of the setwsaction function in the /dws/api/ endpoint of the Tenda DAP-1520 router’s software is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by using the host parameter...

CVE-2025-2621

A vulnerability was found in D-Link DAP-1620 1.03 and classified as critical. This issue affects the function checkdwscookie of the file /storage. The manipulation of the argument uid leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the...

CVE-2025-2619

A vulnerability, which was classified as critical, was found in D-Link DAP-1620 1.03. This affects the function checkdwscookie of the file /storage of the component Cookie Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit h...

CVE-2025-1538

A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by this vulnerability is the function setwsaction of the file /dws/api/. The manipulation leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and m...

D-Link DAP-1320 安全漏洞

The D-Link DAP-1320 is a wireless signal extender from China-based AUO D-Link. The D-Link DAP-1320 suffers from a stack buffer overflow vulnerability that originates from the function setwsaction in the file /dws/api/. An attacker can exploit this vulnerability to cause a program crash or even...

CVE-2024-33335

SQL Injection vulnerability in H3C technology company SeaSQL DWS V2.0 allows a remote attacker to execute arbitrary code via a crafted file...

CVE-2024-33335

CVE-2024-33335 concerns a SQL Injection vulnerability in H3C SeaSQL DWS version 2.0 that could allow a remote attacker to execute arbitrary code via a crafted file. The Red Hat/NVD/CNNVD/CVE and PT-Security entries consistently identify SeaSQL DWS 2.0 as affected and describe the issue as SQL inj...

CVE-2024-33335

SQL Injection vulnerability in H3C technology company SeaSQL DWS V2.0 allows a remote attacker to execute arbitrary code via a crafted file...

PT-2024-25209 · H3C · H3C Seasql Dws

Name of the Vulnerable Software and Affected Versions: H3C SeaSQL DWS version 2.0 Description: The issue allows a remote attacker to execute arbitrary code via a crafted file. This is a result of a SQL Injection vulnerability in the H3C SeaSQL DWS product. Recommendations: For H3C SeaSQL DWS...

H3C SeaSQL DWS SQL Injection Vulnerability

H3C SeaSQL DWS is a distributed analytic database from China's Xinhua San H3C. A SQL injection vulnerability exists in H3C SeaSQL DWS version v.2.0, which originates from a vulnerability that allows remote attackers to execute arbitrary code via a crafted file...

Authentication flaw

Dell EMC OpenManage Server Administrator OMSA version 9.5 Microsoft Windows installations with Distributed Web Server DWS enabled configuration contains an authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain admin access on t...

Netop Remote Control DWS File Stack Buffer Overflow

A buffer overflow vulnerability has been reported in Netop Remote Control. The vulnerability is due to insufficient bounds checking when handling a specially crafted command string within a DWS file. A remote attacker can exploit this issue by enticing a target user to open a specially crafted DW...