EUVD-2025-6299

Malicious code in bioql PyPI...

ZendFramework Potential Information Disclosure and Insufficient Entropy vulnerabilities

In Zend Framework 2, the Zend\Math\Rand component generates random bytes using the OpenSSL or Mcrypt extensions when available but will otherwise use PHP's mtrand function as a fallback. All outputs from mtrand are predictable for the same PHP process if an attacker can brute force the seed used ...

Insecure Cipher

requests uses an insecure cipher. The library uses the SHA1 hashing algorithm by default which was shown to be compromised with the SHA1 shatter attack. The library also does not offer any alternate hashing algorithm...

Top 4 Data Breaches reported in last 24 Hours

There is no doubt that data breaches are on the rise. Hardly a day goes without headlines about any significant data breach. According to the latest ‘Cyber Security Breaches Survey 2016’ report published by UK government, two-thirds of the biggest firm in the UK have experienced at least a cyber...

Fedora 14 : pure-ftpd-1.0.32-1.fc14 (2011-7374)

Updating to current 1.0.32 version. - added support SHA1 password hashing in MySQL and PostgreSQL backends - removed support for braces expansion in directory listings has been disabled CVE-2011-0418 - list of allowed ciphers for SSL/TLS connections can be specified Note that Tenable Network...