EUVD-2022-24679

Malicious code in bioql PyPI...

EUVD-2024-2067

Malicious code in bioql PyPI...

EUVD-2023-53394

Malicious code in bioql PyPI...

EUVD-2022-24682

Malicious code in bioql PyPI...

EUVD-2024-47552

Malicious code in bioql PyPI...

EUVD-2024-38230

Malicious code in bioql PyPI...

EUVD-2024-49241

Malicious code in bioql PyPI...

EUVD-2025-7610

Malicious code in bioql PyPI...

EUVD-2021-6714

Malicious code in bioql PyPI...

EUVD-2022-0624

Malicious code in bioql PyPI...

EUVD-2022-48736

Malicious code in bioql PyPI...

CVE-2025-8868

In Progress Chef Automate, versions earlier than 4.13.295, on Linux x86 platform, an authenticated attacker can gain access to Chef Automate restricted functionality in the compliance service via improperly neutralized inputs used in an SQL command using a well-known token...

CVE-2025-8868

In Progress Chef Automate, versions earlier than 4.13.295, on Linux x86 platform, an authenticated attacker can gain access to Chef Automate restricted functionality in the compliance service via improperly neutralized inputs used in an SQL command using a well-known token...

CVE-2025-58628

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kamleshyadav Miraculous miraculous allows Blind SQL Injection.This issue affects Miraculous: from n/a through 2.0.9...

CVE-2025-58604 WordPress Mail Mint Plugin <= 1.18.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPFunnels Mail Mint mail-mint allows SQL Injection.This issue affects Mail Mint: from n/a through = 1.18.5...

CVE-2025-4650

User with high privileges is able to introduce a SQLi using the Meta Service indicator page. Caused by an Improper Neutralization of Special Elements used in an SQL Command.This issue affects web: from 24.10.0 before 24.10.9, from 24.04.0 before 24.04.16, from 23.10.0 before 23.10.26...

CVE-2025-24767

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in facturaone TicketBAI Facturas para WooCommerce wp-ticketbai allows Blind SQL Injection.This issue affects TicketBAI Facturas para WooCommerce: from n/a through = 3.19...

BIT-MARIADB-MIN-2020-28912

With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between...

Ubuntu 24.10 / 25.04 : ADOdb vulnerability (USN-7530-1)

The remote Ubuntu 24.10 / 25.04 host has a package installed that is affected by a vulnerability as referenced in the USN-7530-1 advisory. It was discovered that ADOdb incorrectly handled SQL input. A remote attacker could use this issue to execute arbitrary SQL commands. Tenable has extracted th...

ROS-20250526-06

A vulnerability in HashiCorp's Vault and Vault Enterprise enterprise information archiving platforms is related to the fact that the Shamir implementation uses pre-computed table lookups. Exploitation of the vulnerability could allow an attacker to gain access to potentially sensitive information...