CVE-2021-22400

Some Huawei Smartphones has an insufficient input validation vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The app can modify specific parameters, causing the system to crash. Affected product include:OxfordS-AN00A...

EUVD-2005-4562

Malware in sbrugna...

EUVD-2018-2216

Malware in sbrugna...

EUVD-2021-22020

Malware in sbrugna...

EUVD-2015-1507

Malware in sbrugna...

EUVD-2023-30972

Malicious code in bioql PyPI...

EUVD-2022-4841

Malicious code in bioql PyPI...

CVE-2022-32051

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc, week, sTime, eTime parameters in the function FUN004133c4...

CVE-2014-9241

Multiple cross-site scripting XSS vulnerabilities in MyBB aka MyBulletinBoard 1.8.x before 1.8.2 allow remote attackers to inject arbitrary web script or HTML via the 1 type parameter to report.php, 2 signature parameter in a doeditsig action to usercp.php, or 3 title parameter in the...

CVE-2015-9427

The googmonify plugin through 0.5.1 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=googmonify.php PID or AID parameter...

CVE-2025-2200

SQL injection vulnerability in the IcProgreso Innovación y Cualificación plugin. This vulnerability allows an attacker to obtain, update and delete data from the database by injecting an SQL query on the parameters user, id, idGroup, startdate and enddate in the endpoint...

CVE-2025-1873

CVE-2025-1873 affects 101news (version 1.0) with an SQL injection vulnerability in admin/contactus.php, specifically via the pagetitle and pagedescription parameters. The CVE entry is corroborated by multiple sources (NVD, RH advisory, CVE list, CIRCL sighting, and other feeds) confirming a high-...

CVE-2024-55064

CVE-2024-55064 concerns EasyVirt DC NetScope versions

kernel: ftruncate: pass a signed offset

An unexpected file truncate flaw was found when opening files with specific parameters in the Linux kernel's file-system. This vulnerability allows a local user to corrupt specific files when having access to these files...

Schneider Electric SAGE RTUs Buffer Error Vulnerability

Schneider Electric SAGE RTUs is a high-performance device for industrial automation and remote monitoring from Schneider Electric France. A buffer error vulnerability exists in the Schneider Electric SAGE RTUs, which stems from an out-of-bounds write vulnerability that could lead to an...

Smart Office 安全漏洞

Smart Office is an office application. A security vulnerability exists in Smart Office, which stems from Main.aspx contains unknown functions that result in weak passwords via specific parameters...

Best Courier Management System Cross-Site Scripting Vulnerability

Best Courier Management System is a courier management system by Mayuri K. Individual developer. A cross-site scripting vulnerability exists in SourceCodester Best Courier Management System version 1.0, which stems from the presence of an unknown function that can lead to cross-site scripting by...

GHSA-V3V9-3JF4-5PXX Jeecg P3 Biz Chat allows remote attackers to read arbitrary files

Jeecg P3 Biz Chat 1.0.5 allows remote attackers to read arbitrary files through specific parameters...

CVE-2023-33510

Jeecg P3 Biz Chat 1.0.5 allows remote attackers to read arbitrary files through specific parameters...

CVE-2023-33510

Jeecg P3 Biz Chat 1.0.5 allows remote attackers to read arbitrary files through specific parameters...