EUVD-2021-9128

Malicious code in bioql PyPI...

Malicious code in ods-core-v1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c864e00fb5ed04b7160b6804c91bddefa43500c877ad9e889fdc397f89c35721 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4927 Malicious code in ods-core-v1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c864e00fb5ed04b7160b6804c91bddefa43500c877ad9e889fdc397f89c35721 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2021-21957

A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report ODS Remote Connector 20.2.16900.0. A specially-crafted command injection can lead to elevated capabilities. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2021-21957

A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report ODS Remote Connector 20.2.16900.0. A specially-crafted command injection can lead to elevated capabilities. An attacker can provide a malicious file to trigger this vulnerability...

Privilege escalation

A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report ODS Remote Connector 20.2.16900.0. A specially-crafted command injection can lead to elevated capabilities. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2021-21957

A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report ODS Remote Connector 20.2.16900.0. A specially-crafted command injection can lead to elevated capabilities. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2021-21957

Dream Report ODS Remote Connector 20.2.16900.0 has a privilege-escalation flaw in the Remote Server via a specially crafted command injection that can lead to high-integrity code execution. The vulnerability can allow an attacker to replace binaries (e.g., RTM/ Rdxa paths) and gain NT SYSTEM priv...

PT-2021-14839 · Unknown · Dream Report Ods Remote Connector

Name of the Vulnerable Software and Affected Versions: Dream Report ODS Remote Connector version 20.2.16900.0 Description: A privilege escalation issue exists in the Remote Server functionality due to a specially-crafted command injection, which can lead to elevated capabilities. An attacker can...

Dream Report ODS Remote Connector privilege escalation vulnerability

Summary A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report ODS Remote Connector 20.2.16900.0. A specially-crafted command injection can lead to elevated capabilities. An attacker can provide a malicious file to trigger this vulnerability. Tested Version...

OrbiTeam BSCW Server XSS / LFI / User Enumeration Vulnerabilities

OrbiTeam BSCW Server versions 5.0.x, 5.1.x, 5.2.4 and below, 7.3.x and below, and 7.4.3 and below suffer from path traversal, cross site scripting, HTTP header, session object manipulation, local file inclusion, and user enumeration vulnerabilities...

ods-autoparts.com Cross Site Scripting vulnerability OBB-1429539

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Johnson Controls Metasys

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Johnson Controls Equipment: Metasys Vulnerability: Improper Restriction of XML External Entity Reference 2. RISK EVALUATION Successful exploitation of this vulnerability can allow a...

libreoffice: Remote arbitrary file disclosure vulnerability via WEBSERVICE formula

A flaw was found in libreoffice before 5.4.5 and before 6.0.1. Arbitrary remote file disclosure may be achieved by the use of the WEBSERVICE formula in a specially crafted ODS file...

CVE-2018-6871

A flaw was found in libreoffice before 5.4.5 and before 6.0.1. Arbitrary remote file disclosure may be achieved by the use of the WEBSERVICE formula in a specially crafted ODS file...

openSUSE Security Update : phpMyAdmin (openSUSE-2012-135)

update to 3.4.10.1 fix for bnc747841 - security XSS in replication setup, see PMASA-2012-1 - 3.4.10.0 2012-02-14 - bug 3460090 interface TextareaAutoSelect feature broken - patch 3375984 export PHP Array export might generate invalid php code - bug 3049209 import Import from ODS ignores cell that...

Fedora 16 : phpMyAdmin-3.4.8-1.fc16 (2011-16768)

Changes for 3.4.8.0 2011-12-01 : - interface enum data split at space char more space to edit - interface ENUM/SET editor can't handle commas in values - interface no links to browse/empty views and tables - interface Deleted search results remain visible - import ODS import ignores memory limits...

OpenDNSSEC 1.3.0rc2 new Version released !

OpenDNSSEC 1.3.0rc2 new Version released ! Version 1.3.0rc2 of OpenDNSSEC Match the names of the signer pidfile and enforcer pidfile. Include check for resign resalt in ods-kaspcheck. Bugfixes: Bugfix 231: Fix MySQL version check. ods-ksmutil: Update now sends a HUP to the enforcerd. Signer Engin...