EUVD-2018-20496

Malware in sbrugna...

EUVD-2010-0306

Malware in sbrugna...

EUVD-2019-19166

Malware in sbrugna...

EUVD-2024-45519

Malicious code in bioql PyPI...

EUVD-2024-45520

Malicious code in bioql PyPI...

CVE-2019-9804

In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command into a command shell on macOS will cause the execution of unintended additional bash script commands if the URL was maliciously crafted. This is the result of an issue with the native version of Bash o...

CVE-2024-51722 Vulnerabilities in SecuSUITE Server Components Impact SecuSUITE

A local privilege escalation vulnerability in the SecuSUITE Server System Configuration of SecuSUITE versions 5.0.420 and earlier could allow a successful attacker that had gained control of code running under one of the system accounts listed in the configuration file to potentially issue...

BlackBerry SecuSUITE 安全漏洞

BlackBerry SecuSUITE is a multi-platform solution for end-to-end encryption of voice calls and messages from BlackBerry Canada. A security vulnerability exists in BlackBerry SecuSUITE version 5.0.420 and earlier, which stems from the presence of a local elevation of privilege vulnerability that...

PyMOL 安全漏洞

PyMOL is a molecular visualization system open-sourced by Schrodinger. A security vulnerability exists in PyMOL version 2.5.0 that stems from not properly validating or restricting commands in scripts, allowing an attacker to run unauthorized commands in the context of the user running the...

Cross site scripting

A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...

Cross site scripting

A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...

CVE-2023-21522

A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...

Microsoft Internet Explorer Property Put Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

BlackBerry Unified Endpoint Manager Cross-Site Scripting Vulnerability

BlackBerry Unified Endpoint Manager UEM is a unified endpoint management solution from BlackBerry Canada. The solution is used to manage endpoint devices and view their access. A security vulnerability exists in BlackBerry UEM. An attacker could exploit this vulnerability to be able to store scri...

Cross site scripting

In BlackBerry UEM Management Console version 12.7.1 and earlier, a reflected cross-site scripting vulnerability that could allow an attacker to execute script commands in the context of the affected UEM Management Console account by crafting a malicious link and then persuading a user with...

CVE-2017-17442

In BlackBerry UEM Management Console version 12.7.1 and earlier, a reflected cross-site scripting vulnerability that could allow an attacker to execute script commands in the context of the affected UEM Management Console account by crafting a malicious link and then persuading a user with...

Cross site scripting

A reflected cross-site scripting vulnerability in the BlackBerry WatchDox Server components Appliance-X, version 1.8.1 and earlier, and vAPP, versions 4.6.0 to 5.4.1, allows remote attackers to execute script commands in the context of the affected browser by persuading a user to click an...

CVE-2017-3890

A reflected cross-site scripting vulnerability in the BlackBerry WatchDox Server components Appliance-X, version 1.8.1 and earlier, and vAPP, versions 4.6.0 to 5.4.1, allows remote attackers to execute script commands in the context of the affected browser by persuading a user to click an...

Microsoft Internet Explorer Hidden Browser Window Restriction Bypass Vulnerability

This vulnerability allows remote attackers to create an invisible browser window on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

DCForum+ 1.2 Subject Field HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8384/info DCForum+ is prone to an HTML injection vulnerability. An attacker may exploit this issue by including hostile HTML and script code in the subject field of posts to the bulletin board. This is because the script...