16 matches found
EUVD-2020-18844
Malware in sbrugna...
EUVD-2020-30041
Malware in sbrugna...
EUVD-2025-12542
Malicious code in bioql PyPI...
EUVD-2023-2031
Malicious code in bioql PyPI...
EUVD-2024-50909
Malicious code in bioql PyPI...
EUVD-2025-7400
Malicious code in bioql PyPI...
CVE-2022-30335
Bonanza Wealth Management System BWM 7.3.2 allows SQL injection via the login form. Users who supply the application with a SQL injection payload in the User Name textbox could collect all passwords in encrypted format from the Microsoft SQL Server component...
CVE-2020-9212
There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The attacker can exploit the vulnerability to perform some operation and can get information and cause information leak...
CVE-2019-9676
Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions. After an attacker lo...
CVE-2025-2475
Mattermost versions 10.5.x = 10.5.1, 10.4.x = 10.4.3, 9.11.x = 9.11.9 fail to invalidate the cache when a user account is converted to a bot which allows an attacker to login to the bot exactly one time via normal credentials...
IBM CICS TX 跨站请求伪造漏洞
IBM CICS TX is a comprehensive, single transaction runtime package from International Business Machines IBM. IBM CICS TX has a cross-site request forgery vulnerability that stems from the presence of a cross-site request forgery CSRF vulnerability. An attacker could exploit this vulnerability by...
Oracle Solaris 安全漏洞
Oracle Solaris is a UNIX operating system from Oracle Corporation. A security vulnerability exists in Oracle Solaris version 10 and 11, which can be exploited by an attacker to compromise Oracle Solaris by logging into Oracle Solaris...
CommScope Arris Surfboard Sb8200 访问控制错误漏洞
The CommScope Arris Surfboard Sb8200 is a Docsis 3.1 modem from CommScope USA. An access control error vulnerability exists in the CommScope Arris SurfBoard SB8200 that stems from the product's password change feature not having effective security measures in place. The vulnerability can be...
Hyland OnBase Cross-Site Request Forgery Vulnerability (CNVD-2020-52044)
Hyland OnBase is an enterprise information platform for managing your content, processes and cases. A cross-site request forgery vulnerability exists in Hyland OnBase. The vulnerability stems from the presence of default credentials. An attacker could exploit the vulnerability to enable user logi...
phpeasynews-sql.txt
-+================================================================================+- -+ PHPEasyNews = 1.13 RC2 SQL Injection Vulnerabilitys +- -+================================================================================+- Discovered By: t0pP8uZz Discovered On: 4 JUNE 2008 Script Download:...
[HSC Security Group] Ocean12 Calendar manager 1.01 SQL injection
Hackers Center Security Group http://www.hackerscenter.com/ Zinho's Security Advisory Product: Ocean12 Calendar manager 1.01 Site: www.ocean12scripts.com The admin login panel suffers of an sql injection that allows anyone to log in as Admin. Proof of concept: /// - Adminid: Admin' UNION ALL SELE...