169 matches found
EUVD-2020-5789
Malware in sbrugna...
EUVD-2020-30243
Malware in sbrugna...
EUVD-2020-2821
Malware in sbrugna...
EUVD-2017-1352
Malware in sbrugna...
EUVD-2020-2820
Malware in sbrugna...
EUVD-2019-19088
Malware in sbrugna...
EUVD-2017-1350
Malware in sbrugna...
EUVD-2024-54092
Malicious code in bioql PyPI...
EUVD-2024-54255
Malicious code in bioql PyPI...
EUVD-2024-54140
Malicious code in bioql PyPI...
EUVD-2022-50181
Malicious code in bioql PyPI...
EUVD-2022-50179
Malicious code in bioql PyPI...
EUVD-2022-50180
Malicious code in bioql PyPI...
EUVD-2022-50178
Malicious code in bioql PyPI...
CVE-2024-54448
The Automation Scripting functionality can be exploited by attackers to run arbitrary system commands on the underlying operating system. An account with administrator privileges or that has been explicitly granted access to use Automation Scripting is needed to carry out the attack. Exploitation...
CVE-2024-54449
The API used to interact with documents in the application contains two endpoints with a flaw that allows an authenticated attacker to write a file with controlled contents to an arbitrary location on the underlying file system. This can be used to facilitate RCE. An account with ‘read’ and ‘writ...
CVE-2024-54448
The Automation Scripting functionality can be exploited by attackers to run arbitrary system commands on the underlying operating system. An account with administrator privileges or that has been explicitly granted access to use Automation Scripting is needed to carry out the attack. Exploitation...
CVE-2024-54449
The API used to interact with documents in the application contains two endpoints with a flaw that allows an authenticated attacker to write a file with controlled contents to an arbitrary location on the underlying file system. This can be used to facilitate RCE. An account with ‘read’ and ‘writ...
CVE-2024-12020
There is a reflected cross-site scripting XSS within JSP files used to control application appearance. An unauthenticated attacker could deceive a user into clicking a crafted link to trigger the vulnerability. Stealing the session cookie is not possible due to cookie security flags, however the...
CVE-2024-12020
There is a reflected cross-site scripting XSS within JSP files used to control application appearance. An unauthenticated attacker could deceive a user into clicking a crafted link to trigger the vulnerability. Stealing the session cookie is not possible due to cookie security flags, however the...