10 matches found
EUVD-2020-25267
Malware in sbrugna...
EUVD-2020-23964
Malware in sbrugna...
EUVD-2023-43819
Malicious code in bioql PyPI...
EUVD-2022-38404
Malicious code in bioql PyPI...
PT-2025-25337 · Euroinformation · Euroinformation Moneticopaiement
Name of the Vulnerable Software and Affected Versions: EuroInformation MoneticoPaiement module for PrestaShop version 1.1.1 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands via the TPE, societe, MAC, reference, or aliascb parameter to "transaction.php",...
CVE-2022-48326
Multiple Cross Site Scripting XSS vulnerabilities in Mapos 4.39.0 allow attackers to execute arbitrary code. Affects the following parameters: 1 nome, 2 aCliente, 3 eCliente, 4 dCliente, 5 vCliente, 6 aProduto, 7 eProduto, 8 dProduto, 9 vProduto, 10 aServico, 11 eServico, 12 dServico, 13 vServico...
CVE-2019-20082
ASUS RT-N53 3.0.0.4.376.3754 devices have a buffer overflow via a long landns1x or landns2x parameter to AdvancedLANContent.asp...
CVE-2023-43375
Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities at /hoteldruid/clienti.php via the annonascita, annoscaddoc, giornonascita, giornoscaddoc, linguacli, mesenascita, and mesescaddoc parameters...
Vulnerability in client (CVE-2018-10915)
Certain host connection parameters defeat client-side security defenses...
CVE-2020-15143: Remote Code Execution in ParametersParser while using request parameters inside expression language
Impact Request parameters injected inside an expression evaluated by symfony/expression-language package haven't been sanitized properly. This allows the attacker to access any public service by manipulating that request parameter, allowing for Remote Code Execution. The vulnerable versions...