EUVD-2022-33702

Malicious code in bioql PyPI...

CVE-2022-29363

Phpok v6.1 was discovered to contain a deserialization vulnerability via the updatef function in logincontrol.php. This vulnerability allows attackers to getshell via writing arbitrary files...

Deserialization of untrusted data

Phpok v6.1 was discovered to contain a deserialization vulnerability via the updatef function in logincontrol.php. This vulnerability allows attackers to getshell via writing arbitrary files...

CVE-2022-29363

CVE-2022-29363 affects Phpok v6.1, where a deserialization vulnerability in login_control.php:update_f() allows an attacker to write arbitrary files, enabling shell access (getshell). The issue is documented with high/critical impact (C/P/I/A = high/partial/high/partial; CVSS 3.1 base score 9.8)....

CVE-2018-16142

PHPOK 4.8.278 has a Reflected XSS vulnerability in framework/www/logincontrol.php via the back parameter to the okf function...

CVE-2018-16142

PHPOK 4.8.278 has a Reflected XSS vulnerability in framework/www/logincontrol.php via the back parameter to the okf function...

CVE-2018-16142

CVE-2018-16142 concerns PHPOK 4.8.278, where a reflected XSS vulnerability exists in framework/www/login_control.php via the _back parameter to the ok_f function. The connected sources (NVD/CNVD/CVELIST) confirm the vulnerability type as cross-site scripting and specify the affected component and...