PT-2026-24109

A security vulnerability has been detected in open-webui up to 0.6.16. Affected is an unknown function of the file backend/start windows.bat of the component JWT Key Handler. Such manipulation of the argument WEBUI SECRET KEY leads to insufficiently random values. It is possible to launch the...

CVE-2026-0580

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

CVE-2026-0580

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

CVE-2026-0580

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

CVE-2026-0580 SourceCodester API Key Manager App Import Key cross site scripting

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

EUVD-2026-0904

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

CVE-2026-0580 SourceCodester API Key Manager App Import Key cross site scripting

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

CVE-2026-0580

CVE-2026-0580 affects the SourceCodester API Key Manager App 1.0. The vulnerability is in the Import Key Handler component, where manipulating an unknown functionality leads to Cross-Site Scripting (XSS). The issue is exploitable remotely; attack vectors are not fully detailed in the provided doc...

SourceCodester API Key Manager App 代码注入漏洞

SourceCodester API Key Manager App is a SourceCodester open source api key manager application. A code injection vulnerability exists in SourceCodester API Key Manager App version 1.0, which stems from an incorrect operation of the component Import Key Handler and could lead to a cross-site...

PT-2026-1224

Name of the Vulnerable Software and Affected Versions SourceCodester API Key Manager App version 1.0 Description A flaw exists within the Import Key Handler component that allows for cross site scripting. This issue can be triggered remotely through manipulation of an unknown functionality...

EUVD-2025-205475

A security vulnerability has been detected in actiontech sqle up to 4.2511.0. The impacted element is an unknown function of the file sqle/utils/jwt.go of the component JWT Secret Handler. The manipulation of the argument JWTSecretKey leads to use of hard-coded cryptographic key . The attack is...

EUVD-2024-16953

Malicious code in bioql PyPI...

EUVD-2025-25385

Malicious code in bioql PyPI...

EUVD-2022-52065

Malicious code in bioql PyPI...

EUVD-2024-16954

Malicious code in bioql PyPI...

CVE-2025-9239

A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils of the file eladmin-common/src/main/java/me/zhengjie/utils/EncryptUtils.java of the component DES Key Handler. The manipulation of the argument STRPARAM with the input Passw0rd...

CVE-2025-9239 elunez eladmin DES Key EncryptUtils.java EncryptUtils inadequate encryption

A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils of the file eladmin-common/src/main/java/me/zhengjie/utils/EncryptUtils.java of the component DES Key Handler. The manipulation of the argument STRPARAM with the input Passw0rd...

CVE-2025-9239

The CVE-2025-9239 vulnerability affects elunez eladmin up to version 2.7, specifically the EncryptUtils class in the DES Key Handler (eladmin-common/src/main/java/me/zhengjie/utils/EncryptUtils.java). Manipulating the STR PARAM input (example: Passw0rd) results in inadequate encryption strength. ...

CVE-2024-1187

A vulnerability, which was classified as problematic, has been found in Munsoft Easy Outlook Express Recovery 2.0. This issue affects some unknown processing of the component Registration Key Handler. The manipulation leads to denial of service. Local access is required to approach this attack. T...

CVE-2022-4768

A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...