70 matches found
Garmin WDU 安全漏洞
Garmin WDU is a wireless data unit developed by Garmin Corporation, designed for data updates and maintenance of aviation electronic devices. Versions 1.1.6 and 2.5.0 of Garmin WDU contain security vulnerabilities. These vulnerabilities stem from the ability to allow symbolic link attacks, which...
EUVD-2026-20974
AGiXT is a dynamic AI Agent Automation Platform. Prior to 1.9.2, the safejoin function in the essentialabilities extension fails to validate that resolved file paths remain within the designated agent workspace. An authenticated attacker can use directory traversal sequences to read, write, or...
Qnap QTS and QuTS hero Improper Link Resolution Before File Access (CVE-2024-53691)
A link following vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations. We have already fixed the vulnerability in the following...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: expat (UTSA-2025-991275)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991275 advisory. expat before version 2.4.0 does not properly handle entities expansion unless an application developer uses the XMLSetEntityDeclHandler function, which allows remote...
EUVD-2018-0681
Malware in sbrugna...
EUVD-2011-2511
Malware in sbrugna...
EUVD-2018-3668
Malware in sbrugna...
EUVD-2021-27537
Malicious code in bioql PyPI...
EUVD-2024-49221
Malicious code in bioql PyPI...
EUVD-2022-3792
Malicious code in bioql PyPI...
EUVD-2024-16935
Malicious code in bioql PyPI...
EUVD-2023-32460
Malicious code in bioql PyPI...
EUVD-2024-44157
Malicious code in bioql PyPI...
EUVD-2023-1087
Malicious code in bioql PyPI...
EUVD-2024-54663
Malicious code in bioql PyPI...
EUVD-2022-51594
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-6109
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - readAsText can indefinitely read the file picked by the user, rather than only once at the time the file is picked in File API in Google Chrome prior to...
Linux Distros Unpatched Vulnerability : CVE-2019-11730
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability exists where if a user opens a locally saved HTML file, this file can use file: URIs to access other files in the same directory or...
WordPress AI Engine Information Disclosure Vulnerability
WordPress AI Engine is a plugin based on OpenAI technology, which is mainly used to integrate artificial intelligence features into WordPress websites to improve the efficiency of content generation, automated operations and so on. WordPress AI Engine suffers from an information disclosure...
CVE-2025-24937
File contents could be read from the local file system by an attacker. Additionally, malicious code could be inserted in the file, leading to a full compromise of the web application and the container it is running on. The vulnerable component is bound to the network stack and the set of possible...