CVE-2025-58742 Insufficient Configuration Protections Enable Database Credential Interception in Milner ImageDirector Capture

Insufficiently Protected Credentials, Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Connection Settings dialog in Milner ImageDirector Capture on Windows allows Adversary in the Middle AiTM by modifying the 'Server' field to redirect client...

EUVD-2019-10438

Malware in sbrugna...

EUVD-2018-21118

Malware in sbrugna...

EUVD-2020-16329

Malware in sbrugna...

EUVD-2019-10189

Malware in sbrugna...

EUVD-2020-5520

Malware in sbrugna...

EUVD-2018-1274

Malware in sbrugna...

EUVD-2020-24532

Malware in sbrugna...

EUVD-2024-18083

Malicious code in bioql PyPI...

EUVD-2022-25985

Malicious code in bioql PyPI...

EUVD-2024-18152

Malicious code in bioql PyPI...

EUVD-2023-24359

Malicious code in bioql PyPI...

EUVD-2022-26211

Malicious code in bioql PyPI...

EUVD-2024-18062

Malicious code in bioql PyPI...

CVE-2025-49186

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it susceptible to brute-force attacks...

CVE-2020-23585

A remote attacker can conduct a cross-site request forgery CSRF attack on OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OPV3.3.1-191028. The vulnerability is due to insufficient CSRF protections for the "mgmconfigfile.asp" because of which attacker can create a crafted "csrf for...

CVE-2024-20421

A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack and perform arbitrary actions on an affected device. This vulnerability is due to...

The vulnerability of the Launch Services interface for operating systems such as MacOS, iOS, iPadOS, watchOS, and visionOS allows attackers to gain unauthorized access to protected information.

The vulnerability of the Launch Services interface for operating systems such as MacOS, iOS, iPadOS, watchOS, and visionOS is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

CVE-2024-20352

A vulnerability in Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a directory traversal attack, which could allow the attacker to perform arbitrary actions on an affected device. This vulnerability is due to insufficient protections for the web UI of an affecte...

CVE-2024-20281

A vulnerability in the web-based management interface of Cisco Nexus Dashboard and Cisco Nexus Dashboard hosted services could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. This vulnerability is due to insufficient CSRF...