EUVD-2025-23120

Malicious code in bioql PyPI...

PT-2025-9211 · Zj1983 Zz · Zj1983 Zz

Name of the Vulnerable Software and Affected Versions: zj1983 zz up to 2024-8 Description: A critical vulnerability was found in the function getUserList of the file src/main/java/com/futvan/z/system/zrole/ZroleAction.java. The manipulation of the argument roleid leads to SQL injection. The attac...

Symantec Endpoint Protection SONAR Component CVE-2019-12752 Security Bypass Vulnerability

Description Symantec Endpoint Protection is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. Symantec Endpoint Protection versions prior to 12.0.2 are vulnerable. Technologi...

Microsoft Edge and Internet Explorer CVE-2019-0762 Security Bypass Vulnerability

Description Microsoft Edge and Internet Explorer are prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions. This may lead to other attacks. Technologies Affected Microsoft Edge Microsoft Internet Explorer 10 Microsoft Internet Explore...

Microsoft ASP.NET Core CVE-2018-0785 Cross Site Request Forgery Vulnerability

Description Microsoft ASP.NET Core is prone to a cross-site request-forgery vulnerability. An attacker can exploit this issue to perform unauthorized actions in the context of a logged-in user of the affected application. This may aid in other attacks. Technologies Affected Microsoft ASP.NET Core...

PowerShdll - Run PowerShell with rundll32 (Bypass software restrictions)

Run PowerShell with dlls only. Does not require access to powershell.exe as it uses powershell automation dlls. dll mode: Usage: rundll32 PowerShdll,main rundll32 PowerShdll,main -f Run the script passed as argument rundll32 PowerShdll,main -w Start an interactive console in a new window rundll32...

Microsoft Internet Explorer CVE-2017-0064 Security Bypass Vulnerability

Description Microsoft Internet Explorer is prone to a security-bypass vulnerability. An attacker can exploit this issue by tricking an unsuspecting victim into viewing a page containing malicious content. This could allow the attacker to bypass certain security restrictions. This may lead to othe...

Microsoft Exchange Server CVE-2016-3379 Cross Site Scripting Vulnerability

Description Microsoft Exchange Server is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow...

Microsoft Windows multiple security vulnerabilities

Buffer overflow, memory corruption, code execution, privilege escalation, restrictions bupass, DoS, information disclosure...

Microsoft Internet Explorer CVE-2015-1703 Remote Privilege Escalation Vulnerability

Description Microsoft Internet Explorer is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Internet Explorer 6, 7, 8, 9, 10, and 11 are vulnerable. Technologies Affected Avaya...

IBM Websphere MQ unauthorized access

Authentication bypass, security restrictions bypass...

CSS in PHPNuke add-on

/phptonuke.php?filnavn=scriptalert document.cookie/script " and ' aren't authorized...