CVE-2026-2401

Technical details for CVE-2026-2401 are not publicly available in the provided documents; monitor for updates.

CVE-2026-26928 Lack of Dynamic Library Validation in SzafirHost

SzafirHost downloads necessary files in the context of the initiating web page. When called, SzafirHost updates its dynamic library. JAR files are correctly verified based on a list of trusted file hashes, and if a file was not on that list, it was checked to see if it had been digitally signed b...

Krajowa Izba Rozliczeniowa SzafirHost 安全漏洞

Krajowa Izba Rozliczeniowa SzafirHost is an electronic signature server component developed by the Polish company Krajowa Izba Rozliczeniowa. It provides certificate management and signature processing capabilities. Versions of Krajowa Izba Rozliczeniowa SzafirHost prior to 1.1.0 contained securi...

CVE-2020-7252

Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer DXL Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files...

Arbitrary File Upload

mautic/grapes-js-builder-bundle is vulnerable to Arbitrary File Upload. The vulnerability is due to lack of file type restrictions during uploads, which allows an attacker to upload and execute malicious files on the server...

EUVD-1999-0998

Malware in sbrugna...

EUVD-2016-0389

Malware in sbrugna...

EUVD-2020-28379

Malware in sbrugna...

EUVD-2015-8847

Malware in sbrugna...

EUVD-2021-23932

Malware in sbrugna...

EUVD-2015-8845

Malware in sbrugna...

EUVD-2021-9169

Malicious code in bioql PyPI...

EUVD-2022-39060

Malicious code in bioql PyPI...

EUVD-2024-27311

Malicious code in bioql PyPI...

EUVD-2024-20656

Malicious code in bioql PyPI...

EUVD-2022-30037

Malicious code in bioql PyPI...

WordPress plugin StoreKeeper for WooCommerce 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

Seagate Toolkit 安全漏洞

Seagate Toolkit is a software for managing and backing up data from Seagate USA. A security vulnerability exists in Seagate Toolkit versions prior to 2.34.0.33, which originates from an un-referenced search path or element and could result in the execution of a malicious file...

CVE-2025-22133

WeGIA is a web manager for charitable institutions. Prior to 3.2.8, a critical vulnerability was identified in the /WeGIA/html/socio/sistema/controller/controlaxlsx.php endpoint. The endpoint accepts file uploads without proper validation, allowing the upload of malicious files, such as .phar,...

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...