11 matches found
EUVD-2014-4810
Malware in sbrugna...
EUVD-2014-6735
Malware in sbrugna...
EUVD-2001-0461
Malware in sbrugna...
EUVD-2024-53943
Malicious code in bioql PyPI...
CVE-2025-50185 DbGate allows Unauthorized File Access via CSV Plugin
DbGate is cross-platform database manager. In versions 6.6.0 and below, DbGate allows unauthorized file access due to insufficient validation of file paths and types. A user with application-level access can retrieve data from arbitrary files on the system, regardless of their location or file...
CVE-2025-31183
The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to access sensitive user data...
PT-2025-12329 · WordPress · File Away
Name of the Vulnerable Software and Affected Versions: File Away plugin for WordPress versions up to, and including, 3.9.9.0.1 Description: The issue is related to unauthorized access of data due to a missing capability check on the ajax function. This allows unauthenticated attackers to read the...
Linux Distros Unpatched Vulnerability : CVE-2015-2045
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The HYPERVISORxenversion hypercall in Xen 3.2.x through 4.5.x does not properly initialize data structures, which allows local guest users to obtain sensitive...
Security Bulletin: Vulnerability in urllib3 affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0)[CVE-2023-43804]
Summary The urllib3 package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEsCVE-2023-43804 Vulnerability Details CVEID:CVE-2023-43804 DESCRIPTION: urllib3 could allow a remote authenticated attacker to obtain sensitive information,...
CVE-2024-8352
The Social Web Suite – Social Media Auto Post, Social Media Auto Publish plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 4.1.11 via the downloadlog function. This makes it possible for unauthenticated attackers to read the contents of arbitrary file...
SQL Injection Vulnerability in Office Fly of Zhejiang Eagle Software Co. Ltd (CNVD-2021-10547)
Ltd. ZheJiang Eagle Soft Co., LTD was established in November 2004, the company adhere to the "focus, professional" business philosophy for enterprises, administrative institutions to provide information technology solutions and software services. The company adheres to the business philosophy of...