EUVD-2025-5873

Malicious code in bioql PyPI...

PT-2025-20420 · Totolink · Totolink A950Rg

Name of the Vulnerable Software and Affected Versions: TOTOlink A950RG version 4.1.2cu.5204 B20210112 Description: The issue arises from improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of the /lib/cste modules/system.so module. This leads to a buffer overflow...

PT-2023-23913 · Intel · Intel Nuc Rugged Kit +2

Name of the Vulnerable Software and Affected Versions: IntelR NUC Rugged Kit, IntelR NUC Kit and IntelR Compute Element BIOS firmware affected versions not specified Description: The issue is related to improper input validation in the BIOS firmware of certain Intel products, which may allow a...

The vulnerability of the microprogramming software for Rockwell Automation’s ArmorStart ST controllers, related to deficiencies in the validation of user-input data, allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of Rockwell Automation’s ArmorStart ST engine controllers is related to deficiencies in the validation of user input data. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting XSS attacks remotely...

CVE-2023-29195 Vitess VTAdmin users that can create shards can deny access to other functions

Vitess is a database clustering system for horizontal scaling of MySQL through generalized sharding. Prior to version 16.0.2, users can either intentionally or inadvertently create a shard containing / characters from VTAdmin such that from that point on, anyone who tries to create a new shard fr...

CVE-2019-5461

An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.6...