EUVD-2025-23854

Malicious code in bioql PyPI...

File Disclosure

vrana/adminer is vulnerable to File Disclosure. This vulnerability is due to insufficient input validation, allowing unauthorized access to sensitive files within the application's directory...

H2 Database Web Interface Create Alias Remote Code Execution Exploit

The H2 database contains an alias function which allows for arbitrary Java code to be used. This functionality can be abused to create an exec functionality to pull our payload down and execute it. H2's web interface contains restricts MANY characters, so injecting a payload directly is not...

Information Disclosure

dolibarr/dolibarr is vulnerable to information disclosure. The library does not properly restrict access to the modulepart parameters, allowing an attacker to download or read any file from the directory...

Design/Logic Flaw

An improper handling of exceptional conditions vulnerability in Cortex XDR Agent allows a local authenticated Windows user to create files in the software's internal program directory that prevents the Cortex XDR Agent from starting. The exceptional condition is persistent and prevents Cortex XDR...

Cortex XDR Agent: Exceptional condition denial-of-service (DoS)

An improper handling of exceptional conditions vulnerability in Cortex XDR Agent allows a local authenticated Windows user to create files in the software's internal program directory that prevents the Cortex XDR Agent from starting. The exceptional condition is persistent and prevents Cortex XDR...

Directory Traversal

ritp is vulnerable to directory traversal attacks. This attack is possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information...

Directory Traversal

augustine is vulnerable to directory traversal attacks. A malicious user can make a request to an unauthorized directory to gain access to it...

TurnkeyForms Software Directory 1.0 SQL Injection and Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/32175/info TurnkeyForms Software Directory is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

WSN Classifieds 6.2.12 and 6.2.18 - Multiple Vulnerabilities

No description provided by source. Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE9 - Firefox 8.0 Not...

WSN Classifieds 6.2.12 / 6.2.18 Cross Site Scripting / SQL Injection

Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE9 - Firefox 8.0 Note: Redirect and Html Injection can ...

WSN Classifieds 6.2.12/6.2.18 - Multiple Vulnerabilities

Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE9 - Firefox 8.0 Note: Redirect and Html Injection can ...

WSN Classifieds v.6.2.12 and 6.2.18 Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE...

WSN Software Directory '.php' Files Information Disclosure Vulnerability

WSN Software Directory is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Audio Record Expert DLL Hijacking Exploit (dwmapi.dll)

Exploit for windows platform in category local exploits ====================================================== Audio Record Expert DLL Hijacking Exploit dwmapi.dll ====================================================== || || | || o,7 || . o7 || 4||| ow, : / /...

CVE-2009-0937

Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service via unknown vectors...

turnkeyforms Software Directory (XSS/SQL) Multiple Vulnerabilities

No description provided by source. ============================================================================== Software Directory v1.0 SQL/XSS Remote SQL Vulnerability ============================================================================== » Script: Software Directory v1.0 » Language: P...

Prozilla Software Directory - Cross-Site Scripting SQL Injection

Prozilla Software Directory - Cross-Site Scripting SQL Injection ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

Prozilla Software Directory (XSS/SQL) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ============================================================== Prozilla Software Directory XSS/SQL Multiple Vulnerabilities ==============================================================...

Prozilla Software Directory - Cross-Site Scripting / SQL Injection

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ============================================================================== / | | || | | \ | | / \ | |/ / | | |...