CVE-2026-6940

radare2 prior to 6.1.4 contains a path traversal vulnerability in project deletion that allows local attackers to recursively delete arbitrary directories by supplying absolute paths that escape the configured dir.projects root directory. Attackers can craft absolute paths to project marker files...

UBUNTU-CVE-2026-6940

radare2 prior to 6.1.4 contains a path traversal vulnerability in project deletion that allows local attackers to recursively delete arbitrary directories by supplying absolute paths that escape the configured dir.projects root directory. Attackers can craft absolute paths to project marker files...

EUVD-2022-33639

Malicious code in bioql PyPI...

Malicious code in tju-proj-mgt-raoguozheng (npm)

The package tju-proj-mgt-raoguozheng was found to contain malicious code...

Malicious code in nudt-proj-mgt-maoxinjun (npm)

The package nudt-proj-mgt-maoxinjun was found to contain malicious code...

MAL-2025-45375 Malicious code in nudt-proj-mgt-maoxinjun (npm)

The package nudt-proj-mgt-maoxinjun was found to contain malicious code...

MAL-2025-46345 Malicious code in tju-proj-mgt-raoguozheng (npm)

The package tju-proj-mgt-raoguozheng was found to contain malicious code...

Malicious code in @zalastax/nolb-proj_ (npm)

The package @zalastax/nolb-proj was found to contain malicious code...

Malicious code in @zalastax/nolb-proj- (npm)

The package @zalastax/nolb-proj- was found to contain malicious code...

Malicious code in @zalastax/nolb-proj (npm)

The package @zalastax/nolb-proj was found to contain malicious code...

MAL-2025-13327 Malicious code in @zalastax/nolb-proj (npm)

The package @zalastax/nolb-proj was found to contain malicious code...

MAL-2025-13333 Malicious code in @zalastax/nolb-proj_ (npm)

The package @zalastax/nolb-proj was found to contain malicious code...

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

Avantune Genialcloud ProJ 10 - Cross-Site Scripting (XSS)

Exploit Title: Avantune Genialcloud ProJ 10 - Cross-Site Scripting XSS Date: 2022-06-01 Exploit Author: Andrea Intilangelo Vendor Homepage: https://www.avantune.com Software Link: https://www.genialcloud.com - https://www.genialcloud.com/discover-genialcloud-proj - https://store.genialcloud.com...

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

Cross site scripting

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2022-29296

The CVE-2022-29296 entry describes a reflected XSS in the login portal of Avantune Genialcloud ProJ 10. The vulnerability permits injecting and executing arbitrary web scripts or HTML via a crafted payload, demonstrated via a PoC parameter (e.g., msg) in the login page. Exploit details are discus...