CVE-2024-41691

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to storing of FTP credentials in plaintext within the SquashFS-root filesystem associated with the router's firmware. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary...

CVE-2025-10639

CVE-2025-10639 affects WorkExaminer Professional Server. The FTP service on port 12304 uses weak hardcoded credentials, allowing an attacker with network access to login, modify/read data, and achieve remote code execution as NT AUTHORITY\SYSTEM by exchanging accessible binaries in the WorkExamin...

EUVD-2019-4985

Malware in sbrugna...

EUVD-2007-2027

Malware in sbrugna...

EUVD-2007-4638

Malware in sbrugna...

EUVD-1999-1216

Malware in sbrugna...

EUVD-2019-16406

Malware in sbrugna...

EUVD-2008-1090

Malware in sbrugna...

EUVD-2018-10102

Malware in sbrugna...

EUVD-2008-4657

Malware in sbrugna...

EUVD-2024-49053

Malicious code in bioql PyPI...

EUVD-2022-33298

Malicious code in bioql PyPI...

EUVD-2024-39136

Malicious code in bioql PyPI...

EUVD-2025-27525

Malicious code in bioql PyPI...

EUVD-2025-21723

Malicious code in bioql PyPI...

EUVD-2023-31814

Malicious code in bioql PyPI...

EUVD-2025-6681

Malicious code in bioql PyPI...

EUVD-2022-34269

Malicious code in bioql PyPI...

CVE-2025-10040

The CVE-2025-10040 entry concerns the WordPress plugin WP Import – Ultimate CSV XML Importer. Affected: plugin versions up to 7.27. Issue: missing capability check on the get_ftp_details AJAX action, enabling authenticated users with Subscriber-level access and above to disclose configured SFTP/F...

CVE-2025-7426 MINOVA TTA Information Disclosure and Credential Exposure

Information disclosure and exposure of authentication FTP credentials over the debug port 1604 in the MINOVA TTA service. This allows unauthenticated remote access to an active FTP account containing sensitive internal data and import structures. In environments where this FTP server is part of...