EUVD-2025-124799

Malicious code in module-xml-meteor-meissa npm...

EUVD-2020-25351

Malware in sbrugna...

Block Attributes - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-090

This module allows you to define custom attributes for a block. You can specify an attribute name to be added to the block in a predefined format. The module does not sufficiently validate the provided attributes, which makes it possible to insert JavaScript event attributes such as onmouseover,...

Config Pages Viewer - Critical - Access bypass - SA-CONTRIB-2025-086

This module enables you to use configpages as a content entity. The module doesn't check permission or entity access before rendering configpages content...

Quick Node Block - Moderately critical - Access bypass - SA-CONTRIB-2025-064

This module provides a block to easily display a rendered node. The module doesn't check access to content before displaying it to a visitor, allowing unauthorized users to retrieve a list of labels of all nodes...

MAL-2025-3446 Malicious code in f2d5cfdc642c3d4 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7996c4b5f5093de9bc2646228bce15683af10ede7957a934c5afa67346f1149d During installation, the code either exfiltrate some information about the system or download and execute remote code --- Category: MALICIOUS - The campaign ha...

CVE-2024-56637 netfilter: ipset: Hold module reference while requesting a module

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Hold module reference while requesting a module User space may unload ipset.ko while it is itself requesting a set type backend module, leading to a kernel crash. The race condition may be provoked by inserting ...

Dell iDRAC Service Module Out-of-Bounds Read Vulnerability

The Dell iDRAC Service Module is a lightweight software module from Dell USA designed to run on Dell PowerEdge servers to enhance the functionality of iDRAC Integrated Dell Remote Access Controller. An out-of-bounds read vulnerability exists in Dell iDRAC Service Module 5.3.0.0 and earlier...

HCL Technologies BigFix Platform BigFix WebUI Cross-Site Scripting Vulnerability

HCL Technologies BigFix Platform is a suite of endpoint security management platform from HCL Technologies, India. The platform supports automated discovery, management and remediation of endpoint security issues.HCL BigFix WebUI is a console program for the BigFix Platform. A cross-site scriptin...

kernel: infiniband: Kernel crash by sending ABORT_TASK command

System using the infiniband support module ibsrpt were vulnerable to a denial of service by system crash by a local attacker who is able to abort writes to a device using this initiator...

OWASP Stinger Filter Bypass Weakness

No description provided by source. source: http://www.securityfocus.com/bid/25294/info OWASP Stinger is prone to a filter-bypass weakness because the application fails to properly handle certain input. Since the OWASP Stinger project is a software module designed to be incorporated into other...

Code injection

Unspecified vulnerability in HP Intelligent Management Center iMC and HP IMC Service Operation Management Software Module allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-1647...

CVE-2013-4825

Unspecified vulnerability in HP Intelligent Management Center iMC and HP IMC Service Operation Management Software Module allows remote attackers to bypass intended access restrictions via unknown vectors, aka ZDI-CAN-1645...

[security bulletin] HPSBGN02930 rev.1 - HP Intelligent Management Center(iMC) and HP IMC Service Operation Management Software Module, Remote Authentication Bypass, Disclosure of Information, Unauthorized Access, SQL Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03943547 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03943547 Version: 1 HPSBGN02930 rev....

Zoner Photo Studio v15 b3 - Buffer Overflow Vulnerabilities

Document Title: =============== Zoner Photo Studio v15 b3 - Buffer Overflow Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=759 Release Date: ============= 2012-11-13 Vulnerability Laboratory ID VL-ID: ====================================...

OWASP Stinger - Filter Bypass

OWASP Stinger - Filter Bypass source: https://www.securityfocus.com/bid/25294/info OWASP Stinger is prone to a filter-bypass weakness because the application fails to properly handle certain input. Since the OWASP Stinger project is a software module designed to be incorporated into other...

OWASP Stinger - Filter Bypass

source: https://www.securityfocus.com/bid/25294/info OWASP Stinger is prone to a filter-bypass weakness because the application fails to properly handle certain input. Since the OWASP Stinger project is a software module designed to be incorporated into other applications, this weakness may be...