EUVD-2024-0322

Malicious code in bioql PyPI...

PT-2025-20095 · Unknown · Solace Extra

Name of the Vulnerable Software and Affected Versions: Solace Extra versions 1.3.1 and earlier Description: The issue is related to a Server-Side Request Forgery SSRF vulnerability, which allows for Server Side Request Forgery. This means an attacker can potentially trick the server into making...

PT-2025-12243 · Lunary · Lunary

Name of the Vulnerable Software and Affected Versions: lunary-ai/lunary versions be54057 and later Description: The issue allows users to upload and execute arbitrary regular expressions on the server, potentially leading to a Denial of Service DoS condition due to excessive resource consumption...

PT-2025-12246 · Unknown · Lunary-Ai/Lunary

Name of the Vulnerable Software and Affected Versions: Lunary-ai/lunary version git 105a3f6 Description: The application allows users to upload their own regular expressions, which are then executed on the server side. Certain regular expressions can have exponential runtime complexity relative t...

PT-2024-6010 · Adobe · Commerce

Name of the Vulnerable Software and Affected Versions: Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier Description: The issue is related to an Unrestricted Upload of File with Dangerous Type, which could result in arbitrary code execution by an attacker. An attacker cou...

PT-2023-9274 · Superagi · Superagi

Name of the Vulnerable Software and Affected Versions: SuperAGI versions all Description: The issue is related to the incorrect management of code generation in the eval function of the SuperAGI framework, which can be exploited by a remote attacker to execute arbitrary code and gain full control...

PT-2023-25364 · No Magic · Teamwork Cloud

Name of the Vulnerable Software and Affected Versions: Teamwork Cloud versions No Magic Release 2021x through No Magic Release 2022x Description: A Cross-Site Request Forgery CSRF vulnerability could allow an attacker to send a specifically crafted query to the server under certain conditions...

Debian dla-3430 : cups-browsed - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3430 advisory. - ------------------------------------------------------------------------ Debian LTS Advisory DLA-3430-1 [email protected] https://www.debian.org/lts/security/...

PT-2022-10510

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 8.9 Description An issue was discovered in OpenSSH where a client using public-key authentication with agent forwarding but without -oLogLevel=verbose may be unable to determine whether FIDO authentication is confirmi...

CVE-2014-8105

389 Directory Server before 1.3.2.27 and 1.3.3.x before 1.3.3.9 does not properly restrict access to the "cn=changelog" LDAP sub-tree, which allows remote attackers to obtain sensitive information from the changelog via unspecified vectors...

[SNS Advisory No.36] TrendMicro InterScan WebManager Version 1.2 HttpSave.dll Buffer Overflow Vulnerability

----------------------------------------------------------------------- SNS Advisory No.36 TrendMicro InterScan WebManager Version 1.2 HttpSave.dll Buffer Overflow Vulnerability Problem first discovered: Mon, 11 Jun 2001 Published: Mon, 2 Jul 2001...