EUVD-2025-9262

Malicious code in bioql PyPI...

EUVD-2024-53114

Malicious code in bioql PyPI...

PT-2025-19829 · Unknown · Itsourcecode Content Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Content Management System version 1.0 Description: A critical issue has been discovered, affecting a part of the /admin/add topic.php?category=BBS file. The manipulation of the Cover Image argument leads to unrestricted upload...

PT-2024-15947 · Opentext / Micro Focus · Opentext/Micro Focus Arcsight Enterprise Security Manager

Name of the Vulnerable Software and Affected Versions: OpenText / Micro Focus ArcSight Enterprise Security Manager ESM affected versions not specified Description: A potential issue has been identified in OpenText / Micro Focus ArcSight Enterprise Security Manager ESM, which could be remotely...

Tecknodreams SapphireIMS Default Configuration Issue Vulnerability

Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A default configuration issue vulnerability exists in Tecknodreams SapphireIMS version 5.0, which stems from the use of default sapphire:ims credentials to connect clients to the...

Input validation

A vulnerability in the dynamic access control list ACL feature of Cisco IOS XE Software running on Cisco Catalyst 4000 Series Switches could allow an unauthenticated, adjacent attacker to cause dynamic ACL assignment to fail and the port to fail open. This could allow the attacker to pass traffic...

EGallery 1.2 File Upload

File upload vulnerability in EGallery Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

Microsoft DirectShow Remote Code Execution Vulnerability (961373)

This host is missing a critical security update according to Microsoft Bulletin MS09-028. OpenVAS Vulnerability Test $Id: secpodms09-028.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft DirectShow Remote Code Execution Vulnerability 971633 Authors: Nikita MR Copyright c 2009 SecPod,...

New5starRating 1.0 - admincontrol_panel_sample.php SQL Injection

New5starRating 1.0 - admincontrolpanelsample.php SQL Injection source: https://www.securityfocus.com/bid/34680/info New5starRating is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

Archangel Weblog 0.90.2 - Authentication Bypass

source: https://www.securityfocus.com/bid/16848/info Archangel Weblog is prone to an authentication-bypass vulnerability. This issue is due to a failure in the application to properly validate user-supplied data. An attacker can exploit this issue to bypass the authentication mechanism and gain...

Xlight FTP Server 1.x - Long Directory Request Remote Denial of Service

source: https://www.securityfocus.com/bid/9585/info A problem in the handling of large requests has been reported to result in service instability in XLight FTP Server under some circumstances. Because of this, it may be possible for a remote attacker to deny service to legitimate users of the...

Minicom 1.82/1.83 - Capture-file Group Ownership

source: https://www.securityfocus.com/bid/1599/info Minicom is a unix terminal program often used for communication between computers with modems. It is often installed setgid uucp, as this access is required for regular users to use certain devices on the system. Through specifying a capture-fil...