34 matches found
CVE-2025-10702
Improper Control of Generation of Code 'Code Injection' vulnerability in Progress DataDirect Connect for JDBC drivers, Progress DataDirect Open Access JDBC driver and Hybrid Data Pipeline allows Remote Code Inclusion. The SpyAttribute connection option implemented by the DataDirect Connect for JD...
io.github.regychang:flinkify-flink-core (>=0.2.1 <=0.2.2) potentially affected by CVE-2025-62228 via org.apache.flink:flink-connector-sqlserver-cdc (=3.2.0)
org.apache.flink:flink-connector-sqlserver-cdc MAVEN version =3.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.flink:flink-connector-sqlserver-cdc and may be impacted: - io.github.regychang:flinkify-flink-core =0.2.1, =0.2.2 Source cves...
EUVD-2018-0728
Malware in sbrugna...
EUVD-2023-50804
Malicious code in bioql PyPI...
Malicious code in catbox-sqlserver (npm)
The package catbox-sqlserver was found to contain malicious code...
MAL-2025-16660 Malicious code in catbox-sqlserver (npm)
The package catbox-sqlserver was found to contain malicious code...
CVE-2023-46601
A vulnerability has been identified in COMOS All versions. The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to...
CVE-2024-49043 Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability
...
CVE-2024-49043 Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability
...
Malicious code in NServіcеBus.SqlServer.Native (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in NServісеBus.SqlServеr.Native (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaanderen.Basisregisters.MessageHandlіng.Kafka.Consսmer.SqlServer (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-4394 Malicious code in Bе.Vlaanderen.Basisregіsters.MessageHandlіng.Kafka.Consսmer.SqlServer (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Bе.Vlaanderen.Basisregіsters.MessageHandlіng.Kafka.Consսmer.SqlServer (NuGet)
--- -= Per source details. Do not edit below this line.=-...
org.apache.camel.kafkaconnector:camel-aws-redshift-sink-kafka-connector (>=4.0.0 <=4.0.3), org.apache.camel.kafkaconnector:camel-aws-redshift-source-kafka-connector (>=4.0.0 <=4.0.3) +17 more potentially affected by CVE-2024-22369 via org.apache.camel:camel-sql (>=4.0.0 <=4.0.3)
org.apache.camel:camel-sql MAVEN version =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =3.2.0, =3.4.0 - org.apache.camel.quar...
CVE-2023-46601
A vulnerability has been identified in COMOS All versions. The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to...
Design/Logic Flaw
A vulnerability has been identified in COMOS All versions. The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to...
CVE-2023-46601
A vulnerability has been identified in COMOS All versions. The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to...
CVE-2023-46601
A vulnerability has been identified in COMOS All versions. The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to...
CVE-2023-46601
Summary of CVE-2023-46601 : Siemens COMOS (All versions) is affected by an access control vulnerability in the SQLServer connection path, enabling an attacker to query the database and access information beyond the user’s rights. The issue is described across multiple feeds as an improper access ...