CVE-2026-35903

MERCURY MIPC252W IP camera 1.0.5 Build 230306 Rel.79931n contains an improper authentication vulnerability in the RTSP service. After successful Digest authentication in an initial DESCRIBE request, the device does not verify the Digest response parameter in subsequent RTSP requests within the sa...

CVE-2026-35903

MERCURY MIPC252W IP camera 1.0.5 Build 230306 Rel.79931n contains an improper authentication vulnerability in the RTSP service. After successful Digest authentication in an initial DESCRIBE request, the device does not verify the Digest response parameter in subsequent RTSP requests within the sa...

CVE-2025-52563

Chamilo is a learning management system. Prior to version 1.11.30, there is a reflected cross-site scripting XSS vulnerability due to insufficient sanitization of the page parameter in the session/adduserstosession.php endpoint. This issue has been patched in version 1.11.30...

PT-2026-22620

Chamilo is a learning management system. Prior to version 1.11.30, there is a reflected cross-site scripting XSS vulnerability due to insufficient sanitization of the page parameter in the session/add users to session.php endpoint. This issue has been patched in version 1.11.30...

PT-2026-5308

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument ci session leads to improper authorization. The attack may be performed from remote. The exploit has been...

OpenCode USSD Gateway 安全漏洞

OpenCode USSD Gateway is an OpenCode open source gateway software for processing and managing USSD messages. A security vulnerability exists in OpenCode USSD Gateway that originates from an SQL injection in the Session ID parameter in /occontrolpanel/index.php...

EUVD-2006-5018

Malware in sbrugna...

EUVD-2013-6001

Malware in sbrugna...

EUVD-2017-0216

Malware in sbrugna...

EUVD-2003-1198

Malware in sbrugna...

EUVD-2007-6159

Malware in sbrugna...

EUVD-2010-2154

Malware in sbrugna...

EUVD-2020-0108

Malware in sbrugna...

EUVD-2010-4975

Malware in sbrugna...

EUVD-2025-25474

Malicious code in bioql PyPI...

EUVD-2023-37307

Malicious code in bioql PyPI...

Open Redirect

Overview googlesignin is a Sign in or up with Google for Rails applications Affected versions of this package are vulnerable to Open Redirect via the proceedto value in the session store when it is set to a protocol-relative URL. An attacker can redirect users to an unintended origin by submittin...

Linux Distros Unpatched Vulnerability : CVE-2020-26891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AuthRestServlet in Matrix Synapse before 1.21.0 is vulnerable to XSS due to unsafe interpolation of the session GET parameter. This allows a remote attacker to...

Online Course Registration sesssion parameter SQL injection vulnerability

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter sesssion. An attacker can exploit this vulnerability to execute...

CVE-2025-9307 PHPGurukul Online Course Registration session.php sql injection

A flaw has been found in PHPGurukul Online Course Registration 3.1. This affects an unknown function of the file /admin/session.php. This manipulation of the argument sesssion causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used...