Weblate: Argument Injection in /manage/ssh/ via host parameter leads to sensitive file disclosure on Weblate

A vulnerability was discovered in the SSH management interface of Weblate, a web-based translation tool. The vulnerability allowed an attacker with administrative privileges to inject command-line arguments into the host parameter, leading to sensitive file disclosure on the server. The vulnerabl...

EUVD-2025-24840

Malicious code in bioql PyPI...

CVE-2025-20265

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device. This vulnerability is due to a lack of proper handling of user input...

CVE-2025-20265

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device. This vulnerability is due to a lack of proper handling of user input...

CVE-2025-0361

During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthenticated username enumeration through the VAPIX Device Configuration SSH Management API...

Cisco Access Points 安全漏洞

Cisco Access Points is a network access point device from Cisco. A security vulnerability exists in the Cisco Access Points platforms, which is caused by an incorrect file operation check in the SSH management interface. An attacker could use this vulnerability to allow a local authenticated user...

PT-2021-5054 · Cisco · Cisco Access Points +1

Name of the Vulnerable Software and Affected Versions: Cisco Access Points APs affected versions not specified Description: A vulnerability in the SSH management feature could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The issu...

Cisco Unified Computing System (UCS) Denial of Service Vulnerability

Cisco Unified Computing System Manager provides unified, embedded management of all hardware and software components within a unified computing system. A security vulnerability exists in the SSH management interface of the Fabric Interconnect 6200 appliance. A remote attacker could cause a denial...