TYPO3 Extension Content Element Selector 代码问题漏洞

TYPO3 Extension Content Element Selector is an open-source extension for TYPO3 that allows users to select content elements. This extension has a code vulnerability that stems from the extension directly passing cookies controlled by the attacker to the PHP’s unserialize function without proper...

CVE-2025-61167

SIGB PMB v8.0.1.14 was discovered to contain multiple SQL injection vulnerabilities in the /opaccss/ajaxselector.php component via the id and datas parameters...

EUVD-2024-2711

Malicious code in bioql PyPI...

EUVD-2024-52572

Malicious code in bioql PyPI...

CVE-2021-32821

MooTools is a collection of JavaScript utilities for JavaScript developers. All known versions include a CSS selector parser that is vulnerable to Regular Expression Denial of Service ReDoS. An attack requires that an attacker can inject a string into a CSS selector at runtime, which is quite...

CVE-2024-54461

CVE-2024-54461 affects file_selector_android (Flutter). The issue is unsanitized/cleanup-lacking filenames in file_selector’s file choosing, allowing a malicious document provider to select a file and potentially overwrite internal files in the app cache. A fix exists in 0.5.1+12; update to the l...

Xxe

XML external entity XXE vulnerability in Apache ActiveMQ 5.x before 5.10.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...