37 matches found
Wazuh 4.14.2 Security Scanner
This Python script is a non-exploitative security scanner designed to test basic responsiveness and message handling behavior of a Wazuh cluster communication endpoint...
EUVD-2020-7834
Malware in sbrugna...
EUVD-2023-0203
Malicious code in bioql PyPI...
EUVD-2025-15844
Malicious code in bioql PyPI...
EUVD-2022-48982
Malicious code in bioql PyPI...
CVE-2025-29000
Missing Authorization vulnerability in August Infotech Multi-language Responsive Contact Form responsive-contact-form allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Multi-language Responsive Contact Form: from n/a through = 2.8...
From Permissioned to Proof-of-Stake Consensus
This paper presents the first generic compiler that transforms any permissioned consensus protocol into a proof-of-stake permissionless consensus protocol. For each of the following properties, if the initial permissioned protocol satisfies that property in the partially synchronous setting, the...
CVE-2025-37940
In the Linux kernel, the following vulnerability has been resolved: ftrace: Add condresched to ftracegraphsethash When the kernel contains a large number of functions that can be traced, the loop in ftracegraphsethash may take a lot of time to execute. This may trigger the softlockup watchdog. Ad...
Linux Distros Unpatched Vulnerability : CVE-2019-19479
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-setcos.c has an incorrect read operation during parsing of a SETC...
CVE-2025-1614
CVE-2025-1614 affects FiberHome AN5506-01A ONU GPON RP2511, specifically the Port Forwarding Submenu’s /goform/portForwardingCfg.x file and pf_Description parameter, where cross-site scripting is triggered. The vulnerability is reported as exploitable remotely; multiple sources note that the expl...
CVE-2024-11487 Code4Berry Decoration Management System Between Dates Reports btndates_report.php sql injection
A vulnerability has been found in Code4Berry Decoration Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /decoration/admin/btndatesreport.php of the component Between Dates Reports. The manipulation of the argument fromdate/todate leads to sql...
CVE-2024-10613 ESAFENET CDG SystemEncryptPolicyService.java delSystemEncryptPolicy sql injection
A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. Affected by this vulnerability is the function delSystemEncryptPolicy of the file /com/esafenet/servlet/system/SystemEncryptPolicyService.java. The manipulation of the argument id leads to sql injection. The attack can...
CVE-2024-9793 Tenda AC1206 ate ate_ifconfig_set command injection
A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This vulnerability affects the function ateiwprivset/ateifconfigset of the file /goform/ate. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the...
Inefficient Regular Expression Complexity in langflow
A vulnerability classified as problematic was found in Langflow up to 1.0.18. Affected by this vulnerability is an unknown functionality of the file \src\backend\base\langflow\interface\utils.py of the component HTTP POST Request Handler. The manipulation of the argument remainingtext leads to...
CVE-2024-8576
The CVE-2024-8576 issue affects TOTOLINK AC1200 T8/T10 (versions 4.1.5cu.861_B20230220–4.1.8cu.5207) where an input in the setIpPortFilterRules function (/cgi-bin/cstecgi.cgi) allows manipulation of the desc parameter to cause a buffer overflow. This enables a remote attacker to potentially corru...
CVE-2024-8155 ContiNew Admin tree sql injection
A vulnerability classified as critical was found in ContiNew Admin 3.2.0. Affected by this vulnerability is the function top.continew.starter.extension.crud.controller.BaseControllertree of the file /api/system/dept/tree?sort=parentId%2Casc&sort=sort%2Casc. The manipulation of the argument sort...
CVE-2024-6937
A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1. Affected is the function curlexec of the file /admin/forms/optionlists/edit.php of the component Import Option List. The manipulation of the argument url leads to file inclusion. It is possible to...
Enhancing Security with AI: Revolutionizing Protection in the Digital Era
In the ever-evolving landscape of cybersecurity, the integration of Artificial Intelligence AI and Machine Learning ML has emerged as a transformative force. AI, with its ability to mimic human cognition and problem-solving capabilities, combined with MLs capacity to iteratively learn from data, ...
CVE-2024-3685
A vulnerability, which was classified as critical, was found in DedeCMS 5.7.112-UTF8. Affected is an unknown function of the file stepselectmain.php. The manipulation of the argument ids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
CVE-2024-2997
CVE-2024-2997 affects the Bdtask Multi-Store Inventory Management System (up to 20240320). The vulnerability is a cross-site scripting flaw triggered by manipulating the arguments Category Name, Model Name, Brand Name, or Unit Name, allowing remote exploitation and arbitrary script execution with...