Security update for exim (moderate)

openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2025:0409-1 Rating: moderate References: 1246457 Cross-References: CVE-2025-53881 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This update for...

Security update for exim (moderate)

openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2025:0408-1 Rating: moderate References: 1246457 Cross-References: CVE-2025-53881 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes one vulnerability is now available. Description: This update for...

EUVD-2007-0480

Malware in sbrugna...

EUVD-2005-1090

Malware in sbrugna...

EUVD-2010-1047

Malware in sbrugna...

EUVD-2007-2659

Malware in sbrugna...

EUVD-2016-5923

Malware in sbrugna...

EUVD-2017-14715

Malware in sbrugna...

EUVD-2005-1673

Malware in sbrugna...

EUVD-2008-1307

Malware in sbrugna...

EUVD-2025-2091

Malicious code in bioql PyPI...

EUVD-2022-33213

Malicious code in bioql PyPI...

CVE-2025-10217

A vulnerability exists in Asset Suite for an authenticated user to manipulate the content of performance related log data or to inject crafted data in logfile for potentially carrying out further malicious attacks. Performance logging is typically enabled for troubleshooting purposes while...

CVE-2025-10217

A vulnerability exists in Asset Suite for an authenticated user to manipulate the content of performance related log data or to inject crafted data in logfile for potentially carrying out further malicious attacks. Performance logging is typically enabled for troubleshooting purposes while...

CVE-2024-36622

In RaspAP raspap-webgui 3.0.9 and earlier, a command injection vulnerability exists in the clearlog.php script. The vulnerability is due to improper sanitization of user input passed via the logfile parameter...

📄 ABB Cylon Aspect 3.08.03 logYumLookup.php Path Traversal

The ABB Cylon Aspect BAS controller is vulnerable to an authenticated hybrid path traversal vulnerability in logYumLookup.php due to insufficient validation of the logFile parameter. The script checks for the presence of an expected path /var/log/yum.log using strpos, which can be bypassed by...

CVE-2022-40715

An issue was discovered in NOKIA 1350OMS R14.2. An Absolute Path Traversal vulnerability exists for a specific endpoint via the logfile parameter, allowing a remote authenticated attacker to read files on the filesystem arbitrarily...

CVE-2022-28774

Under certain conditions, the SAP Host Agent logfile shows information which would otherwise be restricted...

CVE-2010-1014

Cross-site scripting XSS vulnerability in the Reports Logfile View reportslogview extension 1.2.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-5348

Cross-site scripting XSS vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray aka SteelApp Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote attackers to inject arbitrary web script or HTML via the logfile parameter...