EUVD-2022-4766

Malicious code in bioql PyPI...

CVE-2025-11047

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument alunoid causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and cou...

CVE-2025-11047

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument alunoid causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and cou...

CVE-2025-11047

CVE-2025-11047 affects Portabilis i-Educar up to version 2.10. A weakness exists where manipulating the argument aluno_id in an unknown function of /module/Api/aluno causes improper authorization. The issue can be triggered remotely and, per multiple sources, the exploit has been made publicly av...

CVE-2025-10073 Portabilis i-Educar turma improper authorization

A vulnerability was determined in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/Api/turma. Executing manipulation can lead to improper authorization. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized...

Malicious code in react-sdk-module-api (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c328baa339da0fb222b6ed839e9e024e3df2427f155e95d650451d9a7c0d49ce Any computer that has this package installed or running should be considered...

MAL-2025-5053 Malicious code in react-sdk-module-api (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c328baa339da0fb222b6ed839e9e024e3df2427f155e95d650451d9a7c0d49ce Any computer that has this package installed or running should be considered...

CVE-2021-41075

The NetFlow Analyzer in Zoho ManageEngine OpManger before 125455 is vulnerable to SQL Injection in the Attacks Module API...

K17236: Apache HTTP server vulnerability CVE-2015-3185

Security Advisory Description The apsomeauthrequired function in server/request.c in the Apache HTTP Server 2.4.x before 2.4.14 does not consider that a Require directive may be associated with an authorization setting rather than an authentication setting, which allows remote attackers to bypass...

CVE-2022-24990

TerraMaster NAS 4.2.29 and earlier allows remote attackers to discover the administrative password by sending "User-Agent: TNAS" to module/api.php?mobile/webNasIPS and then reading the PWD field in the response...

Malicious code in service-module-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 79f640e110e59e5a7a2c3705ba8cfe07504c2a6241f0297653c89211f6a25a70 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6031 Malicious code in service-module-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 79f640e110e59e5a7a2c3705ba8cfe07504c2a6241f0297653c89211f6a25a70 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Zoho ManageEngine OpManager SQL Injection Vulnerability (CNVD-2021-88241)

ZOHO ManageEngine OpManager is an end-to-end integrated network management software that enables comprehensive, visual, unified and centralized monitoring and management of IT infrastructure, including network devices, servers, hosts, WAN links, applications and services, within an enterprise...

CVE-2021-41075

The NetFlow Analyzer in Zoho ManageEngine OpManger before 125455 is vulnerable to SQL Injection in the Attacks Module API...

Sql injection

The NetFlow Analyzer in Zoho ManageEngine OpManger before 125455 is vulnerable to SQL Injection in the Attacks Module API...

CVE-2021-41075

The CVE-2021-41075 affects Zoho ManageEngine OpManager’s NetFlow Analyzer prior to build 125455. The vulnerability is a SQL Injection in the Attacks Module API, enabling an attacker to execute arbitrary SQL commands. The issue is confirmed across multiple sources (including Red Hat and CNVD) and ...

CVE-2021-41075

The NetFlow Analyzer in Zoho ManageEngine OpManger before 125455 is vulnerable to SQL Injection in the Attacks Module API...

ZOHO ManageEngine OpManager SQL注入漏洞

ZOHO ManageEngine OpManager is an end-to-end integrated network management software that enables comprehensive, visual, unified and centralized monitoring and management of IT infrastructure, including network devices, servers, hosts, WAN links, applications and services, within an enterprise...

Moderate: Red Hat Security Advisory: ansible security and bug fix update

An update for ansible is now available for Ansible Engine 2.5. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

[SECURITY] Fedora 23 Update: kf5-kdbusaddons-5.24.0-1.fc23

KDBusAddons provides convenience classes on top of QtDBus, as well as an AP I to create KDED modules...