4 matches found
CVE-2026-9863 Core Privileged Access Manager (BoKS) upgrade tooling command injection vulnerability
Fortra BoKS Manager contains an OS command injection vulnerability in the client upgrade and patch tooling for legacy tar-based client installations. A malicious or compromised legacy tar-installed client selected for upgrade or patching may be able to cause commands to be executed on the BoKS...
EUVD-2022-4569
Malicious code in bioql PyPI...
Arbitrary File Download Vulnerability in LIMS Master System of Chengdu Qingsoft Qingzhi Software Co.
Ltd. under the brand "Qingzhi" is located in Chengdu, Sichuan Province, is a software development service provider specializing in Laboratory Information Management System LIMS. An arbitrary file download vulnerability exists in the main LIMS system of Chengdu QSoft QZ Software Co. An attacker ca...
CloudBees Jenkins Google OAuth Credentials Plugin Arbitrary File Read Vulnerability
CloudBees Jenkins is a set of Java-based development of continuous integration tools . A security vulnerability in CloudBees Jenkins Google OAuth Credentials Plugin allows remote attackers to exploit the vulnerability to submit a special request that can read the contents of system files on the...