EUVD-2009-2643

Malware in sbrugna...

CVE-2025-7070 IROAD Dashcam Q9 MFA Pairing Request allocation of resources

A vulnerability has been found in IROAD Dashcam Q9 up to 20250624 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component MFA Pairing Request Handler. The manipulation leads to allocation of resources. The attack needs to be done within the local...

CVE-2025-3539

CVE-2025-3539 - Technical summary (mode C) Affected products: H3C Magic NX15, NX30 Pro, NX400, R3010, BE18000 up to version V100R014. The vulnerability resides in the function FCGI_CheckStringIfContainsSemicolon of the file "/api/wizard/getBasicInfo" within the HTTP POST Request Handler . Root ca...

CVE-2025-32358

In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This coul...

CVE-2025-2958 TRENDnet TEW-818DRU HTTP Request httpd denial of service

A vulnerability was found in TRENDnet TEW-818DRU 1.0.14.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to denial of service. The attack needs to be done...

Malicious code in example-arc-server-request-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f47e48a4969642e3e6ab7d39b5d8f25a7a6d7acf2bbeec054888cfeada839219 The OpenSSF Package Analysis project identified 'example-arc-server-request-local' @ 100.0.1 npm as malicious. It is considered malicious becaus...