7 matches found
EUVD-2025-18774
Malicious code in bioql PyPI...
CVE-2025-34030
An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot parameter in index.php. The application fails to sanitize user-supplied input before using it in a system-level context. Remote, unauthenticated attackers can inject shell commands by appending them to t...
CVE-2025-34030
An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot parameter in index.php. The application fails to sanitize user-supplied input before using it in a system-level context. Remote, unauthenticated attackers can inject shell commands by appending them to t...
CVE-2025-34030 sar2html OS Command Injection
An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot parameter in index.php. The application fails to sanitize user-supplied input before using it in a system-level context. Remote, unauthenticated attackers can inject shell commands by appending them to t...
CVE-2025-34030 sar2html OS Command Injection
An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot parameter in index.php. The application fails to sanitize user-supplied input before using it in a system-level context. Remote, unauthenticated attackers can inject shell commands by appending them to t...
CVE-2025-34030
CVE-2025-34030 affects sar2html, versions up to 3.2.2 and earlier. The root cause is improper sanitization of the user-supplied input in the plot parameter of index.php, which is used in a system-level context. This leads to an OS command injection vulnerability that remote, unauthenticated attac...
VulnCheck KEV: CVE-2025-34030
An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot parameter in index.php. The application fails to sanitize user-supplied input before using it in a system-level context. Remote, unauthenticated attackers can inject shell commands by appending them to...