76 matches found
CVE-1999-0007
Information from SSL-encrypted sessions via PKCS 1...
Low: Red Hat Security Advisory: openldap security update
An update for openldap is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2022-2985
In music service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed...
CVE-2022-4527
A vulnerability was found in collective.task up to 3.0.8. It has been classified as problematic. This affects the function renderCell/AssignedGroupColumn of the file src/collective/task/browser/table.py. The manipulation leads to cross site scripting. It is possible to initiate the attack remotel...
CVE-2012-4926
approve.php in Img Pals Photo Host 1.0 does not authenticate requests, which allows remote attackers to change the activation of administrators via the u parameter in an 1 app0 disable or 2 app1 enable action...
CVE-2025-44838
TOTOLINK CPE CP900 V6.3c.1144B20190715 was discovered to contain a command injection vulnerability in the setUploadUserData function via the FileName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2024-57952 Revert "libfs: fix infinite directory reads for offset dir"
In the Linux kernel, the following vulnerability has been resolved: Revert "libfs: fix infinite directory reads for offset dir" The current directory offset allocator based on mtreealloccyclic stores the next offset value to return in octx-nextoffset. This mechanism typically returns values that...
The vulnerability of the microprogrammed software of the ABB AC700F and AC900F controllers, as well as the ABB Freelance SCADA system, relates to the possibility of buffer overflows based on stacks. This allows a hacker to cause the controller to stop working.
The vulnerability of the microprogramming software for ABB AC700F and AC900F controllers, as well as the ABB Freelance SCADA system, relates to the possibility of buffer overflows based on stacks. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause the...
PT-2023-4984 · Abb · Abb Freelance Controllers Ac 700F +1
Name of the Vulnerable Software and Affected Versions: ABB Freelance controllers AC 700F versions 9.0;0 through V9.2 SP2, through Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019, through Freelance 2019 SP1, through Freelance 201...
CVE-2022-28497
TOTOLink outdoor CPE CP900 V6.3c.566B20171026 is discovered to contain a command injection vulnerability in the mtdwritebootloader function via the filename parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
Malicious code in tkcallendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 091da316c04a67c06230fcacc589735925c578c581ac5e4b53f9559824035fca Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in beatifulsoup (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx e5d6d67cb7f40af1c43f206187d0ab3db9afc5850dad8b5263d64b106a47b6d2 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in gitpythn (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx d3b433c6b7a9af7de2df48e610974b1a2219c6353f656dac1f27078e7ad4ab7b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in pycodstyle (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx e37409883475fe42170564e5e15e545bd75c3a4bce9d9c7b4b7d426a21274caa Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in prompt-toolkkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx c4c251d3a780df7d6fe90e182237b6e011ea4e21c2e694611658bd6e4c278689 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in prmopt-toolkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0ee7ba5aaf4be0952abc2bada752ea586dd24ffc7cd0fe61f5d852f7273f08b2 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in rompt-toolkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 8c684bba24789cbcdaff1b6f9a248717997f424fdd9b342273a46b798501a3dc Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in pompt-toolkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 1261c75a8d1e3798424e001e837db3aa3146f10d5c703718cc3d3237ea5b4024 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in progessbar2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ea84655a6bdf22367da8b19f14ddad7fd954647aea7d9a1898691d1b33e36d37 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in proressbar2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx f11c4702116e59a5d221bdb8e12d7ded5540de75ca00174b50112491f24fdee8 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...