131 matches found
EUVD-2017-15467
Malware in sbrugna...
EUVD-2020-5043
Malware in sbrugna...
EUVD-2002-1265
Malware in sbrugna...
EUVD-2013-2053
Malware in sbrugna...
EUVD-2022-32676
Malicious code in bioql PyPI...
MAL-2025-31362 Malicious code in quince-kio-project (npm)
The package quince-kio-project was found to contain malicious code...
Malicious code in quince-kio-project (npm)
The package quince-kio-project was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2020-12755
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the...
CVE-2022-28223
Tekon KIO devices through 2022-03-30 allow an authenticated admin user to escalate privileges to root by uploading a malicious Lua plugin...
OPENSUSE-SU-2024:10497-1 kio-extras5-16.12.0-1.1 on GA media
These are all security issues fixed in the kio-extras5-16.12.0-1.1 package on the GA media of openSUSE Tumbleweed...
RHEL 5 : kdelibs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kdelibs: kssl incorrect verification of SSL certificate with NUL in subjectAltName CVE-2009-2702 - kf5-ki...
Debian dla-3809 : kio-sieve - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3809 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3809-1 [email protected] https://www.debian.org/lts/security/...
SUSE CVE-2013-2074
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message...
SUSE CVE-2014-8600
Multiple cross-site scripting XSS vulnerabilities in KDE-Runtime 4.14.3 and earlier, kwebkitpart 1.3.4 and earlier, and kio-extras 5.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via a crafted URI using the 1 zip, 2 trash, 3 tar, 4 thumbnail, 5 smtps, 6 smtp, 7 smb...
SUSE CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
CVE-2022-28223
Tekon KIO devices through 2022-03-30 allow an authenticated admin user to escalate privileges to root by uploading a malicious Lua plugin...
CVE-2022-28223
Tekon KIO devices through 2022-03-30 allow an authenticated admin user to escalate privileges to root by uploading a malicious Lua plugin...
CVE-2022-28223
Tekon KIO devices through 2022-03-30 allow an authenticated admin user to escalate privileges to root by uploading a malicious Lua plugin...
Code injection
Tekon KIO devices through 2022-03-30 allow an authenticated admin user to escalate privileges to root by uploading a malicious Lua plugin...