125 matches found
EUVD-1999-1472
Malware in sbrugna...
EUVD-2008-7155
Malware in sbrugna...
EUVD-2025-7464
Malicious code in bioql PyPI...
EUVD-2023-41905
Malicious code in bioql PyPI...
EUVD-2024-50398
Malicious code in bioql PyPI...
EUVD-2024-28293
Malicious code in bioql PyPI...
EUVD-2022-43917
Malicious code in bioql PyPI...
EUVD-2023-57836
Malicious code in bioql PyPI...
EUVD-2025-13928
Malicious code in bioql PyPI...
EUVD-2023-2023
Malicious code in bioql PyPI...
RLSA-2025:13940 Important: go-toolset:rhel8 security update
Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: cmd/go: Go VCS Command Execution Vulnerability CVE-2025-4674 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
Security Bulletin: AIX/VIOS is affected by arbitrary code execution (CVE-2025-47273, CVE-2025-4330, CVE-2024-12718, CVE-2025-4138, CVE-2025-4517) due to Python
Summary Vulnerabilities in Python could allow an attacker to execute arbitrary code CVE-2025-47273, CVE-2025-4330, CVE-2024-12718, CVE-2025-4138, CVE-2025-4517. Python is used by AIX as part of Ansible node management automation. Vulnerability Details CVEID:CVE-2025-47273 DESCRIPTION: setuptools ...
Important: git security update
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...
UBUNTU-CVE-2024-36357
A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the leakage of sensitive information across privileged boundaries...
GHSA-3Q2W-42MV-CPH4 filebrowser Allows Shell Commands to Spawn Other Commands
!NOTE This feature has been disabled by default for all installations from v2.33.8 onwards, including for existent installations. To exploit this vulnerability, the instance administrator must turn on a feature and ignore all the warnings about known vulnerabilities. We're publishing this new...
TencentOS Server 2: python-pillow (TSSA-2024:0069)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0069 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...
CVE-2022-46101
AyaCMS v3.1.2 was found to have a code flaw in the ustsql.inc.php file, which allows attackers to cause command execution by inserting malicious code...
RLSA-2024:6001 Important: postgresql:15 security update
PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement during pgdump executes arbitrary SQL CVE-2024-7348 postgresql: PostgreSQL pgstatsext and pgstatsextexprs lack authorization checks CVE-2024-4317 For more detail...
Incorrect Authorization
Mattermost is vulnerable to Incorrect Authorization. The vulnerability is due to improper restriction of command execution due to a flaw that allows authenticated users to run commands in archived channels...
TOTOLINK A3100R 安全漏洞
TOTOLINK A3100R is a series of wireless routers from China's Gion Electronics TOTOLINK. The TOTOLINK A3100R suffers from a code execution vulnerability that stems from setWebWlanIdx failing to properly filter construct command special characters, commands, and so on. An attacker can exploit this...