29 matches found
EUVD-2021-1252
Malware in sbrugna...
EUVD-2014-6994
Malware in sbrugna...
EUVD-2014-6931
Malware in sbrugna...
EUVD-2014-7259
Malware in sbrugna...
EUVD-2014-6778
Malware in sbrugna...
EUVD-2014-5570
Malware in sbrugna...
EUVD-2014-6686
Malware in sbrugna...
EUVD-2022-46519
Malicious code in bioql PyPI...
EUVD-2022-46517
Malicious code in bioql PyPI...
CVE-2025-46118
CVE-2025-46118 affects CommScope Ruckus Unleashed pre-200.15.6.212.14 and pre-200.17.7.0.139, and Ruckus ZoneDirector pre-10.5.1.0.279, due to hard-coded ftpuser credentials that grant FTP access to the controller. This allows a remote attacker to upload or retrieve arbitrary files from writable ...
CVE-2022-43521
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance. An attacker could exploit these vulnerabilities...
CVE-2022-43531
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit these vulnerabilities to obtain and modify sensitive information...
CVE-2022-43520
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance. An attacker could exploit these vulnerabilities...
CVE-2023-38485 Multiple Buffer Overflow Vulnerabilities in BIOS Implementation of 9200 and 9000 Series Controllers and Gateways
Vulnerabilities exist in the BIOS implementation of Aruba 9200 and 9000 Series Controllers and Gateways that could allow an attacker to execute arbitrary code early in the boot sequence. An attacker could exploit this vulnerability to gain access to and change underlying sensitive information in...
CVE-2022-43531
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit these vulnerabilities to obtain and modify sensitive information...
CVE-2022-43522
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance. An attacker could exploit these vulnerabilities...
in getgrav/grav
✍️ Description Developers often set cookies to be accessible from the root context path "/". Doing so exposes the cookie to all web applications on the domain. Since cookies often carry sensitive information such as session identifiers, sharing cookies across applications can lead a vulnerability...
Maian Weblog 2.0 - 'mail.php' SQL Injection
source: https://www.securityfocus.com/bid/17247/info Maian Weblog is prone to multiple SQL-injection vulnerabilities. The application fails to properly sanitize user-supplied input before using it in SQL queries. This will allow an attacker to inject arbitrary SQL logic into the vulnerable...
Claroline 1.51.6 - toolaccess_details.php?tool Cross-Site Scripting
Claroline 1.51.6 - toolaccessdetails.php?tool Cross-Site Scripting source: https://www.securityfocus.com/bid/13407/info Multiple remote input validation vulnerabilities affect Claroline e-Learning Application. These issues are due to a failure of the application to properly sanitize user-supplied...
UBBCentral UBB.Threads 3.4/3.5 - 'Dosearch.php' SQL Injection
source: https://www.securityfocus.com/bid/11502/info It is reported that UBBCentral UBB.threads is prone to an SQL injection vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. Because of this, a malicious user may influence database...