EUVD-1999-1203

Malware in sbrugna...

EUVD-2008-5153

Malware in sbrugna...

EUVD-2022-3686

Malicious code in bioql PyPI...

EUVD-2024-1521

Malicious code in bioql PyPI...

EUVD-2022-33058

Malicious code in bioql PyPI...

EUVD-2021-29237

Malicious code in bioql PyPI...

SAP NetWeaver AS ABAP XSS (3559307)

The remote SAP NetWeaver ABAP server may be affected by an information disclosure vulnerability. SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to Stored Cross-Site Scripting XSS vulnerability. This enables an attacker, without requiring any...

U.S. Dept Of Defense: Unauthenticated phpinfo()files could lead to ability file read at █████████ [HtUS]

Description: Many PHP installation tutorials instruct the user to create a PHP file that calls the PHP function 'phpinfo' for debugging purposes, and various PHP applications may also include such a file by default. By accessing it, a remote attacker can discover a large amount of information abo...

[ASA-201902-10] libcurl-gnutls: arbitrary code execution

Arch Linux Security Advisory ASA-201902-10 ========================================== Severity: High Date : 2019-02-12 CVE-ID : CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 Package : libcurl-gnutls Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-877 Summary...

Heap overflow

Multiple heap-based buffer overflows in the parsenotify function in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 4.1.0 allow remote pool servers to have unspecified impact via a 1 large or 2 negative value in the Extranonc2size parameter in a mining.subscribe response and a...

Advisory for MS11-035 / ZDI-11-167

Luigi Auriemma Application: Microsoft WINS service http://www.microsoft.com Versions: = 5.2.3790.4520 Platforms: Windows Bug: arbitrary memory corruption Exploitation: remote, versus server Date: found 21 Oct 2010 patched 10 May 2011 advisory 13 Sep 2011 Author: Luigi Auriemma e-mail:...

YaPiG Remote Server-Side Script Execution Vulnerability

The remote web server contains a PHP application that is prone to arbitrary PHP code injection vulnerabilities. Description : The remote host is running YaPiG, a web-based image gallery written in PHP. The remote version of YaPiG may allow a remote attacker to execute malicious scripts on a...

JAWS index.php gadget Parameter Traversal Arbitrary File Access

The remote web server is running JAWS, a content management system written in PHP. Input to the 'gadget' parameter of index.php is not properly sanitized. A remote attacker could exploit this to read potentially sensitive data from the system. This information could also be used to mount further...

WebLibs10.txt

Advisory: ========= Remote Web Server Text File Viewing Vulnerability in WebLibs 1.0 Author: ======= John Bissell A.K.A. HighT1mes Vendor Homepage: ================ http://awsd.com/ Date: ===== 12, 07, 2004 Severity: ========= High Overview: ========= WebLibs is a pretty popular simple little Per...

Easy File Sharing Web Server disk_c Virtual Folder Request Arbitrary File Access

The remote host is running Easy File Sharing Web Server, a web server package designed to facilitate file sharing. There is a flaw in the remote version of this software that could allow a remote attacker to read arbitrary files on the remote host. C Tenable Network Security, Inc...

GoodTech Telnet Server 4.0 - Remote Denial of Service

GoodTech Telnet Server 4.0 - Remote Denial of Service source: https://www.securityfocus.com/bid/9337/info GoodTech Telnet Server is reportedly prone to a denial of service vulnerability. This condition occurs prior to authentication when excessive data is received by the server. Exploitation coul...

Synchrologic Email Accelerator aggregate.asp User Account Disclosure

The remote host seems to be running Synchrologic Email Accelerator Synchrologic is a product which allows remote PDA users to sync with email, calendar, etc. If this server is on an Internet segment as opposed to internal, you may wish to tighten the access to the aggregate.asp page. The server...

CVE-2003-0322

Integer overflow in BitchX IRC client 1.0-0c19 and earlier allows remote malicious IRC servers to cause a denial of service crash...

Ikonboard FUNC.pm lang Cookie Arbitrary Command Execution

The remote server is running IkonBoard, a forum management CGI. The installed version fails to properly sanitize the 'lang' cookie when it contains illegal characters. An attacker, exploiting this flaw, could execute arbitrary code on the remote host when the cookie is inserted into a Perl 'eval'...

Microsoft IIS 5.0 Form_JScript.asp XSS

The script /iissamples/sdk/asp/interaction/FormJScript.asp of FormVBScript.asp allows you to insert information into a form field and once submitted re-displays the page, printing the text you entered. This .asp doesn't perform any input validation. An attacker can exploit this flaw to execute...