3 matches found
EUVD-2023-3317
Malicious code in bioql PyPI...
EUVD-2024-1415
Malicious code in bioql PyPI...
CVE-2025-48949
Navidrome is an open source web-based music collection server and streamer. Versions 0.55.0 through 0.55.2 have a vulnerability due to improper input validation on the role parameter within the API endpoint /api/artist. Attackers can exploit this flaw to inject arbitrary SQL queries, potentially...