40 matches found
EUVD-2013-5380
Malware in sbrugna...
EUVD-2014-6044
Malware in sbrugna...
EUVD-2020-6330
Malware in sbrugna...
EUVD-2021-22753
Malware in sbrugna...
EUVD-2019-6179
Malware in sbrugna...
EUVD-2020-29369
Malware in sbrugna...
EUVD-2025-7062
Malicious code in bioql PyPI...
EUVD-2023-41466
Malicious code in bioql PyPI...
EUVD-2024-46458
Malicious code in bioql PyPI...
EUVD-2025-6984
Malicious code in bioql PyPI...
EUVD-2025-7046
Malicious code in bioql PyPI...
EUVD-2022-3854
Malicious code in bioql PyPI...
CVE-2023-43647
baserCMS is a website development framework. Prior to version 4.8.0, there is a cross-site scripting vulnerability in the file upload feature of baserCMS. Version 4.8.0 contains a patch for this issue...
CVE-2020-8503
Biscom Secure File Transfer SFT 5.0.1050 through 5.1.1067 and 6.0.1000 through 6.0.1003 allows Insecure Direct Object Reference IDOR by an authenticated sender because of an error in a file-upload feature. This is fixed in 5.1.1068 and 6.0.1004...
CVE-2019-15108
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is XSS via a crafted filename to the file-upload feature of the event simulator component...
CVE-2024-51446
A vulnerability has been identified in Polarion V2310 All versions, Polarion V2404 All versions V2404.4. The file upload feature of the affected application improperly sanitizes xml files. This could allow an authenticated remote attacker to conduct a stored cross-site scripting attack by uploadi...
CVE-2024-51446
A vulnerability has been identified in Polarion V2310 All versions, Polarion V2404 All versions V2404.4. The file upload feature of the affected application improperly sanitizes xml files. This could allow an authenticated remote attacker to conduct a stored cross-site scripting attack by uploadi...
CVE-2025-0187
A Denial of Service DoS vulnerability was discovered in the file upload feature of gradio-app/gradio version 0.39.1. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large filename, the server...
CVE-2024-12864
A Denial of Service DoS vulnerability was discovered in the file upload feature of netease-youdao/qanything version v2.0.0. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this vulnerability by sending a large...
CVE-2024-9229
A Denial of Service DoS vulnerability in the file upload feature of stangirard/quivr v0.0.298 allows unauthenticated attackers to cause excessive resource consumption by appending characters to the end of a multipart boundary in an HTTP request. This leads to the server continuously processing ea...