EUVD-2022-31886

Malicious code in bioql PyPI...

EUVD-2022-31880

Malicious code in bioql PyPI...

CVE-2025-50341

A Boolean-based SQL injection vulnerability was discovered in Axelor 5.2.4 via the domain parameter. An attacker can manipulate the SQL query logic and determine true/false conditions, potentially leading to data exposure or further exploitation...

CVE-2025-54790

Files is a module for managing files inside spaces and user profiles. In versions 0.16.9 and below, Files does not have logic to prevent the exploitation of backend SQL queries without direct output, potentially allowing unauthorized data access. This is fixed in version 0.16.10...

BIT-MARIADB-MIN-2022-27376

MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component Itemargs::walkarg, which is exploited via specially crafted SQL statements...

CVE-2024-57641

An issue in the sqlexp component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

PT-2024-9117 · Hewlett Packard · Hpe Autopass License Server

Name of the Vulnerable Software and Affected Versions: HPE AutoPass License Server affected versions not specified Description: The issue is related to a lack of protection against SQL query structure exploitation in the HPE AutoPass License Server software, which can lead to information...

Most Common Types of Cyber Attacks

Pioneering Perspectives on Prevalent Cyber Threats for Beginners Delving into the technology-powered period, it's indispensable to perceive technology as more than just a tool. Indeed, it has become an essential aspect of our day-to-day activities. As we navigate this interconnected realm, it's...

PT-2022-4057

Name of the Vulnerable Software and Affected Versions VMware Workspace ONE Access and Identity Manager affected versions not specified Description The issue is related to a remote code execution vulnerability in the administration platform of VMware Workspace ONE Access and Identity Manager. This...

Wordpress 404 to 301 2.0.2 Plugin - SQL Injection (Authenticated) Exploit

Exploit Title: Wordpress Plugin 404 to 301 2.0.2 - SQL-Injection Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://de.wordpress.org/plugins/404-to-301/ Software Link: https://downloads.wordpress.org/plugin/404-to-301.2.0.2.zip Version: = 2.0.2 Tested on: Ubuntu 20.04 CV...

PT-2021-7502 · Mariadb +10 · Mariadb Server +10

Name of the Vulnerable Software and Affected Versions: MariaDB Server versions 10.6.3 and below Description: The issue is related to a use-after-free vulnerability in the Item func in::cleanup component of the MariaDB Server, which can be exploited by a remote attacker using specially crafted SQL...

Top 5 my own security audit fails

I have been in application security since 2009. Since that time I was involved in more than 300 different projects and sometimes even discovered new things like SSRF or the first XXE OOB FTP exploitation. Today I’d like to talk about my fails during my 300+ projects to ensure you don’t repeat my...

DDIVRT-2012-44 Epicor Returns Management SOAP-Based Blind SQL Injection

Title ----- DDIVRT-2012-44 Epicor Returns Management SOAP-Based Blind SQL Injection Severity -------- High Date Discovered --------------- April 12, 2012 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Chris Graham and r@b13$ Vulnerability Description...

PostgreSQL < 9.1.3 / 9.0.7 / 8.4.11 Multiple Vulnerabilities

Binary data 6337.prm...

QuickDev 4 PHP - Database Disclosure

QuickDev 4 PHP - Database Disclosure ============================================================================== » Note : Tribute to the martyrs of Gaza . ============================================================================== » QuickDev 4 Php Database Disclosure Vulnerability...

clickbanex-sql.txt

------------------------------- Aria-Security Team, http://Aria-Security.net ------------------------------- Shout Outs: AurA, imm02tal http://icash.ch/index.html?ClickAndRank/details.asp Username: anything' OR 'x'='x Password: anything' OR 'x'='x Regards, The-0utl4w From Aria-Security.Net...