4987 matches found
EUVD-2021-1836
Malware in sbrugna...
EUVD-2021-1792
Malware in sbrugna...
EUVD-2004-0434
Malware in sbrugna...
EUVD-2019-3736
Malware in sbrugna...
EUVD-2006-1648
Malware in sbrugna...
EUVD-2021-21208
Malware in sbrugna...
EUVD-2025-32895
Nagios Log Server before 2024R1.3.2 allows authenticated users with read-only API access to stop the Elasticsearch service via a /nagioslogserver/index.php/api/system/stop?subsystem=elasticsearch call. The service stops even though "message": "Could not stop elasticsearch" is in the API response...
vLLM 安全漏洞
vLLM is a vLLM open source high throughput and memory efficient inference and service engine for LLM. A security vulnerability exists in versions prior to vLLM 0.11.0rc2, which stems from a timing attack vulnerability in the API key authentication method that could lead to authentication bypass...
uscc-binary-exploits
Binary Exploitation Framework A comprehensive collection of t...
EUVD-2025-32501
A user with the appropriate authorization can create any number of user accounts via an API endpoint using a POST request. There are no quotas, checking mechanisms or restrictions to limit the creation...
CVE-2025-58578 Unlimited user creation by authorized users
A user with the appropriate authorization can create any number of user accounts via an API endpoint using a POST request. There are no quotas, checking mechanisms or restrictions to limit the creation...
CVE-2025-58578
The CVE-2025-58578 describes an API misuse where an authorized user can create an unlimited number of user accounts via a POST endpoint due to no quotas or validation. Public documents across Red Hat, NVD, CVE lists, and SICK-related advisories confirm the core issue (unbounded account creation) ...
PT-2025-40949
Name of the Vulnerable Software and Affected Versions YoSmart YoLink versions through 2025-10-02 Description The YoSmart YoLink API constructs an endpoint URL using a device's MAC address and an MD5 hash of non-secret information, including a key starting with cf50. The API endpoint is derived fr...
MulVuln: Enhancing Pre-Trained LMs with Shared and Language-Specific Knowledge for Multilingual Vulnerability Detection
Software vulnerabilities SVs pose a critical threat to safety-critical systems, driving the adoption of AI-based approaches such as machine learning and deep learning for software vulnerability detection. Despite promising results, most existing methods are limited to a single programming languag...
[SECURITY] Fedora 42 Update: mupdf-1.26.3-4.fc42
MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...
golang security update
An update is available for golang. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...
RLSA-2025:8476 Moderate: golang security update
The golang packages provide the Go programming language compiler. Security Fixes: net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
EUVD-2023-3271
Malicious code in bioql PyPI...
EUVD-2025-23805
Malicious code in bioql PyPI...
EUVD-2023-1121
Malicious code in bioql PyPI...