5 matches found
MAL-2026-1091 Malicious code in myproject-bola (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f85bf2df7a8a311b7140ca4086746ecf3c26b219843b96c1f9f8c22f505e7edc Starting the module initiates an infostealer with a Telegram bot and RAT-like functionality and hardcoded credentials. The code automatically adds itself to...
Silex Technology DS-600 安全漏洞
The Silex Technology DS-600 is a hardware device from Silex Technology, Inc. designed to easily connect and share USB 3.0 and 2.0 devices over a network. A security vulnerability exists in the Silex Technology DS-600 version v.1.4.1. A remote attacker could exploit the vulnerability to edit devic...
PT-2023-24996 · Bloofox · Bloofox
Name of the Vulnerable Software and Affected Versions: bloofox version 0.5.2.1 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the cid parameter at the "admin/index.php?mode=settings&page=projects&action=edit" endpoint. Recommendations:...
PT-2023-24999 · Bloofox · Bloofox
Name of the Vulnerable Software and Affected Versions: bloofox version 0.5.2.1 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the tid parameter at the "admin/index.php?mode=settings&page=tmpl&action=edit" endpoint. Recommendations: For...
CVE-2019-10893
CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.793 Free/Open Source Version and 0.9.8.753 Pro is vulnerable to Stored/Persistent XSS for Admin Email fields on the "CWP Settings "Edit Settings" screen. By changing the email ID to any XSS Payload and clicking on Save Changes, the XSS Payload wi...