82 matches found
TRENDnet TEW-821DAP 数据伪造问题漏洞
TRENDnet TEW-821DAP is a wireless access point from the company TRENDnet. The version TRENDnet TEW-821DAP 1.12B01 has a vulnerability related to data falsification. This vulnerability stems from improper handling of the parameter dest in the findHWid/newGuiUpdateFirmware function within the...
Froxlor 安全漏洞
Froxlor is a set of lightweight server management software developed by the Froxlor team. Versions of Froxlor prior to 2.3.6 contained security vulnerabilities. These vulnerabilities stemmed from the use of the adminid parameter in Domains.add without verification, allowing administrators to assi...
CVE-2026-4600
CVE-2026-4600 affects the JavaScript library jsrsasign prior to 11.1.1. The vulnerability stems from improper verification of cryptographic signatures due to DSA domain-parameter validation in KJUR.crypto.DSA.setPublic (and related DSA/X509 verification in src/dsa-2.0.js). An attacker can forge D...
CVE-2026-3050
A flaw has been found in horilla-opensource horilla up to 1.0.2. Impacted is an unknown function of the file static/assets/js/global.js of the component Leads Module. This manipulation of the argument Notes causes cross site scripting. The attack is possible to be carried out remotely. The exploi...
Ubuntu: Security Advisory (USN-7980-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-49607
Mattermost fails to validate the type of the "reminder" body request parameter allowing an attacker to crash the Playbook Plugin when updating the status dialog...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-14847link is external MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability This type of vulnerability is a frequent...
ketr JEPaaS SQL注入漏洞
ketr JEPaaS is a low-code rapid development platform open-sourced by China's ketr ketr. A SQL injection vulnerability exists in ketr JEPaaS 7.2.8 and earlier versions, which stems from incorrect manipulation of the parameter keyWord in the file /je/postil/postil/readAllPostil, which could lead to...
UBUNTU-CVE-2025-40246
In the Linux kernel, the following vulnerability has been resolved: xfs: fix out of bounds memory read error in symlink repair xfs/286 produced this report on my test fleet: ================================================================== BUG: KFENCE: out-of-bounds read in memcpyorig+0x54/0x110...
CVE-2025-11486
A vulnerability was identified in SourceCodester Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /buyNow.php. Such manipulation of the argument Name leads to sql injection. The attack can be launched remotely. The exploit is publicly available an...
EUVD-2018-2357
Malware in sbrugna...
EUVD-2018-8284
Malware in sbrugna...
EUVD-2006-0846
Malware in sbrugna...
EUVD-2020-13697
Malware in sbrugna...
EUVD-2007-5392
Malware in sbrugna...
EUVD-2020-5896
Malware in sbrugna...
EUVD-2009-2088
Malware in sbrugna...
EUVD-2020-15816
Malware in sbrugna...
EUVD-2021-12024
Malware in sbrugna...
EUVD-2018-4030
Malware in sbrugna...