CVE-2025-37139

A vulnerability in an AOS firmware binary allows an authenticated malicious actor to permanently delete necessary boot information. Successful exploitation may render the system unbootable, resulting in a Denial of Service that can only be resolved by replacing the affected hardware...

PT-2025-41983

A vulnerability in an AOS firmware binary allows an authenticated malicious actor to permanently delete necessary boot information. Successful exploitation may render the system unbootable, resulting in a Denial of Service that can only be resolved by replacing the affected hardware...

EUVD-2020-10388

Malware in sbrugna...

EUVD-2019-17090

Malware in sbrugna...

EUVD-2021-20355

Malware in sbrugna...

EUVD-2021-8185

Malicious code in bioql PyPI...

CVE-2024-47912

A vulnerability in the AWV Audio, Web, and Video Conferencing component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to perform unauthorized data-access attacks due to missing authentication mechanisms. A successful exploit could allow an attacker to...

CVE-2023-26579

Missing authentication in the DeleteStaff method in IDAttend’s IDWeb application 3.1.013 allows deletion of staff information by unauthenticated attackers...

CVE-2020-18464

Cross Site Request Forgery CSRF vulnerability in AikCms 2.0.0 in videolist.php, which can let a malicious user delete movie information...

SportsNET SQL Injection Vulnerability (CNVD-2024-37600)

SportsNET is a sports event network application from SportsNET, Inc. SportsNET suffers from a SQL injection vulnerability that can be exploited by an attacker to retrieve, update, and delete all information in the database via a specially crafted SQL query...

SportsNET SQL Injection Vulnerability (CNVD-2024-37603)

SportsNET is a sports event network application from SportsNET, Inc. SportsNET suffers from a SQL injection vulnerability that can be exploited by an attacker to retrieve, update, and delete all information in the database via a specially crafted SQL query...

OSIsoft PI Vision

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: OSIsoft Equipment: PI Vision Vulnerabilities: Cross-site Scripting, Incorrect Authorization 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to information disclosure,...

The vulnerability of the video_list.php file in the AikCms content management system allows a hacker to delete certain information.

The vulnerability of the videolist.php file in the AikCms content management system is related to the manipulation of cross-site requests. Exploiting this vulnerability could allow a malicious actor to remotely delete certain information...

CVE-2021-33678

A function module of SAP NetWeaver AS ABAP Reconciliation Framework, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75B, 75C, 75D, 75E, 75F, allows a high privileged attacker to inject code that can be executed by the application. An attacker could thereby delete some...

CVE-2020-10606

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. This exploitation can result in unauthorized information disclosure, deletion, or modification if the local computer also processes PI System data from other...

Logic Flaw Vulnerability in Shining Networks Virtual Goods Auto-Shipping System (Ship 100) (CNVD-2020-27473)

Shipping 100 is a virtual goods autoship system/article pay to read system. Shining Networks Virtual Goods Auto-Shipping System Ship 100 has a logic flaw vulnerability, which can be exploited through this level of transgression vulnerability, you can delete arbitrary use of information...

CVE-2019-7551

Cantemo Portal before 3.2.13, 3.3.x before 3.3.8, and 3.4.x before 3.4.9 has XSS. Leveraging this vulnerability would enable performing actions as users, including administrative users. This could enable account creation and deletion as well as deletion of information contained within the app...

Arbitrary file deletion

Cantemo Portal before 3.2.13, 3.3.x before 3.3.8, and 3.4.x before 3.4.9 has XSS. Leveraging this vulnerability would enable performing actions as users, including administrative users. This could enable account creation and deletion as well as deletion of information contained within the app...

CVE-2019-7551

Cantemo Portal before 3.2.13, 3.3.x before 3.3.8, and 3.4.x before 3.4.9 has XSS. Leveraging this vulnerability would enable performing actions as users, including administrative users. This could enable account creation and deletion as well as deletion of information contained within the app...

Vulnerability of the employment service management system of Beijing Rongzhi Chuangxiang Information Technology Co., Ltd. to override deletion

The Employment Service Management System is an information interaction system for students, companies, faculty counselors, the Career Center, and their employers. The Employment Service Management System of Beijing Rongzhi Chuangxiang Information Technology Co., Ltd. suffers from an override...