30 matches found
CVE-2026-0936 Insertion of Sensitive Information into Logfile
An Insertion of Sensitive Information into Log File vulnerability in B&R PVI client versions prior to 6.5 may be abused by an authenticated local attacker to gather credential information which is processed by the PVI client application. The logging function of the PVI client application is...
EUVD-2009-3617
Malware in sbrugna...
EUVD-2000-0520
Malware in sbrugna...
EUVD-2004-0480
Malware in sbrugna...
EUVD-2023-23813
Malicious code in bioql PyPI...
EUVD-2024-32548
Malicious code in bioql PyPI...
EUVD-2025-12597
Malicious code in bioql PyPI...
Vulnerabilities fixed in Cisco NX-OS Software
Cisco has fixed vulnerabilities in Cisco NX-OS Software for Nexus 3000 and 9000 Series Switches. The vulnerabilities are in several features of the Cisco NX-OS Software, including IS-IS, PIM6, logging, command-line interface CLI, and the REST API of the Nexus Dashboard. These vulnerabilities can ...
CVE-2023-1580
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk and render the system unusable...
CVE-2025-46326
snowflake-connector-net is the Snowflake Connector for .NET. Versions starting from 2.1.2 to before 4.4.1, are vulnerable to a Time-of-Check to Time-of-Use TOCTOU race condition. When using the Easy Logging feature on Linux and macOS, the Connector reads logging configuration from a user-provided...
CVE-2025-46327 Go Snowflake Driver has race condition when checking access to Easy Logging configuration file
gosnowflake is the Snowflake Golang driver. Versions starting from 1.7.0 to before 1.13.3, are vulnerable to a Time-of-Check to Time-of-Use TOCTOU race condition. When using the Easy Logging feature on Linux and macOS, the Driver reads logging configuration from a user-provided file. On Linux and...
PT-2023-17334 · WordPress · Limit Login Attempts
Name of the Vulnerable Software and Affected Versions: Limit Login Attempts plugin for WordPress versions up to, and including, 1.7.1 Description: The issue is related to Stored Cross-Site Scripting via the lock logging feature due to insufficient input sanitization and output escaping. This allo...
CVE-2023-1580
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk and render the system unusable...
CVE-2023-1580
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk and render the system unusable...
CVE-2023-1580
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk and render the system unusable...
CVE-2023-1580
CVE-2023-1580 affects Devolutions Gateway 2023.1.1 and earlier. The underlying issue is uncontrolled resource consumption in the logging feature, which can be exploited by an attacker to cause a denial of service by filling up disk space, rendering the system unusable. The CVSS/metrics indicate n...
CVE-2023-1580
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk and render the system unusable...
部分Dell产品 操作系统命令注入漏洞
Dell EMC Unisphere for PowerMax is a suite of graphical management tools for PowerMax storage arrays from Dell USA. A security vulnerability exists in Dell EMC Unisphere for PowerMax vApp, VASA Provider vApp, and Solutions Enabler vApp version 9.2.3.x, which stems from the inclusion of incorrect...
CVE-2017-18112
Affected versions of Atlassian Fisheye allow remote attackers to view the HTTP password of a repository via an Information Disclosure vulnerability in the logging feature. The affected versions are before version 4.8.3...
Information disclosure
Affected versions of Atlassian Fisheye allow remote attackers to view the HTTP password of a repository via an Information Disclosure vulnerability in the logging feature. The affected versions are before version 4.8.3...