EUVD-2018-14321

Malware in sbrugna...

EUVD-2023-31750

Malicious code in bioql PyPI...

EUVD-2025-3081

Malicious code in bioql PyPI...

GHSA-M6FV-JMCG-4JFG send vulnerable to template injection that can lead to XSS

Impact passing untrusted user input - even after sanitizing it - to SendStream.redirect may execute untrusted code Patches this issue is patched in send 0.19.0 Workarounds users are encouraged to upgrade to the patched version of express, but otherwise can workaround this issue by making sure any...

Remote Code Execution (RCE)

dolibarr/dolibarr is vulnerable to Remote Code Execution. This vulnerability exists in the dolKeepOnlyPhpCode function in website.lib.php due to improper user inputs validation, allowing an attacker to inject and execute arbitrary PHP code in the system...

CVE-2023-4862 File Manager Pro < 1.8.1 - Admin+ Stored Cross-Site Scripting

The File Manager Pro WordPress plugin before 1.8.1 does not adequately validate and escape some inputs, leading to XSS by high-privilege users...

SUSE: Security Advisory (SUSE-SU-2020:1335-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:1552-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:1334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 8 : openvswitch2.13 (RHSA-2020:2295)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2295 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

RHEL 8 : openvswitch2.11 (RHSA-2020:2297)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2297 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

RHEL 7 : openvswitch2.11 (RHSA-2020:2296)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2296 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

openSUSE Security Update : dpdk (openSUSE-2020-693)

This update for dpdk fixes the following issues : Security issues fixed : - CVE-2020-10722: Fixed an integer overflow in vhostusersetlogbase bsc1171477. - CVE-2020-10723: Fixed an integer truncation in vhostusercheckandallocqueuepair bsc1171477. - CVE-2020-10724: Fixed a missing inputs validation...

SUSE SLED15 / SLES15 Security Update : dpdk (SUSE-SU-2020:1335-1)

This update for dpdk fixes the following issues : Security issues fixed : CVE-2020-10722: Fixed an integer overflow in vhostusersetlogbase bsc1171477. CVE-2020-10723: Fixed an integer truncation in vhostusercheckandallocqueuepair bsc1171477. CVE-2020-10724: Fixed a missing inputs validation in...

Security update for dpdk (moderate)

openSUSE Security Update: Security update for dpdk Announcement ID: openSUSE-SU-2020:0693-1 Rating: moderate References: 1171477 Cross-References: CVE-2020-10722 CVE-2020-10723 CVE-2020-10724 CVE-2020-10725 CVE-2020-10726 Affected Products: openSUSE Leap 15.1 An update that fixes 5 vulnerabilitie...

SUSE-SU-2020:1334-1 Security update for dpdk

This update for dpdk fixes the following issues: Security issues fixed: - CVE-2020-10722: Fixed an integer overflow in vhostusersetlogbase bsc1171477. - CVE-2020-10723: Fixed an integer truncation in vhostusercheckandallocqueuepair bsc1171477. - CVE-2020-10724: Fixed a missing inputs validation i...

PACSOne Server 6.6.2 DICOM Web Viewer - Directory Trasversal

Exploit Title: PACSOne Server 6.6.2 DICOM Web Viewer Directory Trasversal / Local File Inclusion Date: 08/14/2017 Software Link: http://www.pacsone.net/download.htm Google Dork: inurl:pacs/login.php inurl:pacsone/login.php inurl:pacsone filetype:php home inurl:pacsone filetype:php login Version:...

FreePBX 3.0.x RCE Vulnerability - Active Check

FreePBX is prone to a unauthenticated remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

FreePBX 13.0.x < 13.0.154 - Unauthenticated Remote Command Execution

Exploit for php platform in category web applications Vulnerable software : Freepbx Tested versions : 13.0.x $this-commandline = $commandline; $this-cwd = $cwd; Line 275 $commandline = $this-commandline; if '\' === DIRECTORYSEPARATOR && $this-enhanceWindowsCompatibility $commandline = 'cmd /V:ON...