408 matches found
CVE-2025-14183
SGAI Space1 NAS N1211DS (≤1.0.915) is affected by CVE-2025-14183 in the gsaiagent component, specifically GET_FACTORY_INFO/GET_USER_INFO in /cgi-bin/JSONAPI. The issue enables unprotected storage of credentials and is exploitable remotely; public exploit material exists. Red Hat/EUVD/NVD entries ...
PT-2025-47986
"FOD" App uses hard-coded cryptographic keys, which may allow a local unauthenticated attacker to retrieve the cryptographic keys...
Revive Adserver: Stored XSS on inventory-retrieve.php
A Cross-site Scripting XSS vulnerability was discovered on the inventory-retrieve.php and campaign-edit.php pages. The vulnerability allowed an attacker to inject malicious code that would be executed when the page was loaded...
EUVD-2025-35179
A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...
CVE-2022-4981 DCMTK dcmqrscp dcmqrcnf.cc readPeerList null pointer dereference
A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...
EUVD-2007-1817
Malware in sbrugna...
EUVD-2025-22390
Malicious code in bioql PyPI...
EUVD-2025-31264
Malicious code in bioql PyPI...
EUVD-2025-28248
Malicious code in bioql PyPI...
EUVD-2022-42333
Malicious code in bioql PyPI...
EUVD-2025-2678
Malicious code in bioql PyPI...
EUVD-2023-26470
Malicious code in bioql PyPI...
EUVD-2025-16000
Malicious code in bioql PyPI...
EUVD-2023-2939
Malicious code in bioql PyPI...
PT-2025-38931
Name of the Vulnerable Software and Affected Versions weDevs WP Project Manager versions through 2.6.25 Description The software contains hard-coded credentials, potentially allowing retrieval of embedded sensitive data. Recommendations Update weDevs WP Project Manager to a version later than...
CVE-2022-39888
Improper access control vulnerability in retrieveExternalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to access to Proxy information...
CVE-2022-39888
Improper access control vulnerability in retrieveExternalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to access to Proxy information...
CVE-2022-39888
Improper access control vulnerability in retrieveExternalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to access to Proxy information...
CVE-2022-39888
Improper access control vulnerability in retrieveExternalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to access to Proxy information...
PT-2025-35901
Name of the Vulnerable Software and Affected Versions: MiscPolicy versions prior to SMR Nov-2022 Release 1 Description: An improper access control issue exists in the retrieveExternalProxy function. This allows a local attacker to access Proxy information. Recommendations: Update to SMR Nov-2022...