592 matches found
EUVD-2004-1173
Malware in sbrugna...
EUVD-2014-0511
Malware in sbrugna...
EUVD-2005-1826
Malware in sbrugna...
EUVD-2014-0088
Malware in sbrugna...
EUVD-2011-2492
Malware in sbrugna...
EUVD-2014-8011
Malware in sbrugna...
EUVD-2007-5503
Malware in sbrugna...
EUVD-2020-22626
Malware in sbrugna...
EUVD-2001-0812
Malware in sbrugna...
EUVD-2003-1006
Malware in sbrugna...
EUVD-2024-18988
Malicious code in bioql PyPI...
EUVD-2022-54225
Malicious code in bioql PyPI...
CVE-2025-58054 Discourse is vulnerable to XSS when quoting chat messages
Discourse is an open-source community discussion platform. Versions 3.5.0 and below are vulnerable to XSS attacks through parsing and rendering of chat channel titles and chat thread titles via the quote message functionality when using the rich text editor. This issue is fixed in version 3.5.1...
CVE-2025-58054
CVE-2025-58054 refers to a Discourse XSS vulnerability present in versions ≤ 3.5.0, triggered by parsing/rendering chat channel titles and chat thread titles via the quote message feature in the rich text editor. The issue is resolved in version 3.5.1. Affected product: Discourse open-source plat...
USN-7015-7: Python 2.7 regression
USN-7015-4 fixed vulnerabilities in Python. It was discovered that the fix for CVE-2023-27043 for python2.7 was incorrectly applied on Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that the...
OMRON Uninterruptible Power Supply management application 安全漏洞
OMRON Uninterruptible Power Supply management application is a software for monitoring and configuring uninterruptible power supply devices from OMRON Japan. A security vulnerability exists in the OMRON Uninterruptible Power Supply management application that originates from a Windows service...
Advisory ROSA-SA-2025-2971
software: less 608 WASP: ROSA-CHROME unaffected versions = less-608-3 affected versions less-608-3 CVE-ID: CVE-2024-32487 BDU-ID: 2024-03717 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the UNIX-like UNIX text terminal utility Less is related to incorrect handling of quotation marks in the...
PyPI publish GitHub Action vulnerable to injectable expression expansions in action steps
Summary gh-action-pypi-publish makes use of GitHub Actions expression expansions i.e. $ ... in contexts that are potentially attacker controllable. Depending on the trigger used to invoke gh-action-pypi-publish, this may allow an attacker to execute arbitrary code within the context of a workflow...
GHSA-VXMW-7H4F-HQXH PyPI publish GitHub Action vulnerable to injectable expression expansions in action steps
Summary gh-action-pypi-publish makes use of GitHub Actions expression expansions i.e. $ ... in contexts that are potentially attacker controllable. Depending on the trigger used to invoke gh-action-pypi-publish, this may allow an attacker to execute arbitrary code within the context of a workflow...
Linux Distros Unpatched Vulnerability : CVE-2023-39417
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct...