15 matches found
EUVD-2016-2091
Malware in sbrugna...
EUVD-2020-24096
Malware in sbrugna...
EUVD-2025-22569
Malicious code in bioql PyPI...
EUVD-2024-51651
Malicious code in bioql PyPI...
CVE-2008-10002
A vulnerability has been found in cfire24 ajaxlife up to 0.3.2 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.3.3 is able to address this issue. The patch is...
PT-2025-21919 · V-Sft · V-Sft
Name of the Vulnerable Software and Affected Versions: V-SFT versions 6.2.5.0 and earlier Description: The issue is related to an out-of-bounds read in the Conv Macro Data function. Opening specially crafted V7 or V8 files may lead to a crash, information disclosure, and arbitrary code execution...
CVE-2025-29912 CryptoLib Has Heap Buffer Overflow Due to Unsigned Integer Underflow in Crypto_TC_ProcessSecurity
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. In versions 1.3.3 and prior, an unsigned integer underflow in the...
CVE-2025-2173
A vulnerability was found in libzvbi up to 0.2.43. It has been classified as problematic. Affected is the function vbistrndupiconvucs2 of the file src/conv.c. The manipulation of the argument srclength leads to uninitialized pointer. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1447
A vulnerability was found in kasuganosoras Pigeon 1.0.177. It has been declared as critical. This vulnerability affects unknown code of the file /pigeon/imgproxy/index.php. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. Upgrading t...
PT-2024-6045 · Node.Js +7 · Node.Js +7
Name of the Vulnerable Software and Affected Versions: Node.js versions prior to 18.20.4 Node.js versions prior to 20.15.1 Node.js versions prior to 22.4.1 Description: A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an...
PT-2022-27579 · Unknown · Semanticdrilldown Extension
Name of the Vulnerable Software and Affected Versions: SemanticDrilldown Extension affected versions not specified Description: A problematic vulnerability has been found in the SemanticDrilldown Extension, affecting the printFilterLine function of the file includes/specials/SDBrowseDataPage.php ...
Solaris 5.9 (sparc) : 137183-12
Service Provisioning System 6.0x86: Command Line User Interface P. Date this patch was last updated by Sun : Apr/24/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network...
Solaris 10 (sparc) : 127111-11
SunOS 5.10: kernel patch. Date this patch was last updated by Sun : Mar/20/08 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...
Solaris 2.6 (sparc) : 105084-18
The remote host is missing Sun Security Patch number 105084-18 Solstice X25 9.1 patch. Date this patch was last updated by Sun : Tue Jan 13 01:57:07 MST 2004 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the...
BEA WebLogic Server contains vulnerability in handling of certain tags when editing "weblogic.xml"
Overview BEA WebLogic Server contains a vulnerability in the way Weblogic Builder and the SecurityRoleAssignmentMBean.toXML method parse certain tags in the weblogic.xml file. Description BEA Systems describes WebLogic Server as "an industrial-strength application infrastructure for developing,...