59 matches found
Malicious Package
Overview @poclabs/exo-phanto is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
CVE-2020-24052
Several XML External Entity XXE vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition DTD in an XML request...
CVE-2020-24053
Moog EXO Series EXVF5C-2 and EXVP7C2-3 units have a hardcoded credentials vulnerability. This could cause a confidentiality issue when using the FTP, Telnet, or SSH protocols...
EUVD-2020-16790
Malware in sbrugna...
EUVD-2020-16787
Malware in sbrugna...
EUVD-2020-16789
Malware in sbrugna...
EUVD-2022-52158
Malicious code in bioql PyPI...
CVE-2022-4902
A vulnerability classified as problematic has been found in eXo Chat Application. Affected is an unknown function of the file application/src/main/webapp/vue-app/components/ExoChatMessageComposer.vue of the component Mention Handler. The manipulation leads to cross site scripting. It is possible ...
GLSA-202409-09 : Exo: Arbitrary Code Execution
The remote host is affected by the vulnerability described in GLSA-202409-09 Exo: Arbitrary Code Execution A vulnerability has been discovered in Exo. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from the Gentoo Lin...
Exo: Arbitrary Code Execution
Background Exo is an Xfce library targeted at application development, originally developed by os-cillation. It contains various custom widgets and APIs extending the functionality of GLib and GTK. It also has some helper applications that are used throughout the entire Xfce desktop to manage...
MAL-2024-5124 Malicious code in exo-steal (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in exo-steal (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Ubuntu: Security Advisory (USN-6008-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : Exo vulnerability (USN-6008-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6008-1 advisory. It was discovered that Exo did not properly sanitized desktop files. A remote attacker could possibly use this issue to to cau...
USN-6008-1 exo vulnerability
It was discovered that Exo did not properly sanitized desktop files. A remote attacker could possibly use this issue to to cause a crash or arbitrary code execution...
USN-6008-1: Exo vulnerability
It was discovered that Exo did not properly sanitized desktop files. A remote attacker could possibly use this issue to to cause a crash or arbitrary code execution...
CVE-2022-4902
A vulnerability classified as problematic has been found in eXo Chat Application. Affected is an unknown function of the file application/src/main/webapp/vue-app/components/ExoChatMessageComposer.vue of the component Mention Handler. The manipulation leads to cross site scripting. It is possible ...
CVE-2022-4902
A vulnerability classified as problematic has been found in eXo Chat Application. Affected is an unknown function of the file application/src/main/webapp/vue-app/components/ExoChatMessageComposer.vue of the component Mention Handler. The manipulation leads to cross site scripting. It is possible ...
Cross site scripting
A vulnerability classified as problematic has been found in eXo Chat Application. Affected is an unknown function of the file application/src/main/webapp/vue-app/components/ExoChatMessageComposer.vue of the component Mention Handler. The manipulation leads to cross site scripting. It is possible ...
CVE-2022-4902 eXo Chat Application Mention ExoChatMessageComposer.vue cross site scripting
A vulnerability classified as problematic has been found in eXo Chat Application. Affected is an unknown function of the file application/src/main/webapp/vue-app/components/ExoChatMessageComposer.vue of the component Mention Handler. The manipulation leads to cross site scripting. It is possible ...