140 matches found
Incorrect Authorization
Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Incorrect Authorization in the authorization process. An attacker can gain unauthorized write access by bypassing security measures. Remediation Upgrade...
Incorrect Authorization
Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Incorrect Authorization via the authorization process. An attacker can gain unauthorized write access by bypassing security measures. Remediation Upgrade...
Oracle Linux 10 : sudo (ELSA-2026-10758)
The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-10758 advisory. 1.9.15-10.p5 - Resolves: RHEL-164619 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls Tenable has extracted the...
sql-injection-corpus
SQL Injection Corpus - User Guide Overview This corpus con...
P5 FNIP-8x16A和P5 FNIP-4xSH 跨站请求伪造漏洞
The P5 FNIP-8x16A and P5 FNIP-4xSH are Ethernet relay controllers produced by the British company P5. Versions 1.0.20 of both devices contain a cross-site request forgery vulnerability. This vulnerability is due to a susceptibility to cross-site request forgery attacks, which may allow attackers ...
PT-2026-6588
Name of the Vulnerable Software and Affected Versions P5 FNIP-8x16A/FNIP-4xSH versions 1.0.20 and 1.0.11 Description P5 FNIP-8x16A/FNIP-4xSH versions 1.0.20 and 1.0.11 are affected by a stored cross-site scripting issue. Input provided to various GET/POST parameters is not adequately sanitized...
P5 FNIP-8x16A和P5 FNIP-4xSH 跨站脚本漏洞
The P5 FNIP-8x16A and P5 FNIP-4xSH are Ethernet relay controllers produced by the British company P5. Both versions of P5 FNIP-8x16A and P5 FNIP-4xSH, as well as the 1.0.11 version, have a cross-site scripting vulnerability. This vulnerability arises from improper cleaning of multiple GET/POST...
📄 Magento Adobe Commerce 2.4.6-p5 Arbitrary File Read
Magento Adobe Commerce version 2.4.6-p5 arbitrary file read proof of concept exploit. ============================================================================================================================================= | Title : Magento Adobe Commerce 2.4.6-p5 arbitrary file read...
EUVD-2022-37706
Malicious code in bioql PyPI...
EUVD-2022-37705
Malicious code in bioql PyPI...
EUVD-2022-27865
Malicious code in bioql PyPI...
EUVD-2022-27866
Malicious code in bioql PyPI...
EUVD-2022-37704
Malicious code in bioql PyPI...
MAL-2025-28638 Malicious code in p5-bbox-aligned-word (npm)
The package p5-bbox-aligned-word was found to contain malicious code...
Malicious code in @zalastax/nolb-react-p5 (npm)
The package @zalastax/nolb-react-p5 was found to contain malicious code...
MAL-2025-12881 Malicious code in @zalastax/nolb-p5 (npm)
The package @zalastax/nolb-p5 was found to contain malicious code...
Malicious code in p5-bbox-aligned-word (npm)
The package p5-bbox-aligned-word was found to contain malicious code...
Malicious code in @zalastax/nolb-p5 (npm)
The package @zalastax/nolb-p5 was found to contain malicious code...
GHSA-8HCX-XVWW-6C6H Magento Security feature bypass
Magento versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized access...
CVE-2025-27207
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Access Control vulnerability that could result in privilege escalation. A low privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized re...