EUVD-2025-19589

Malicious code in bioql PyPI...

CVE-2025-53005

DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, there is a bypass vulnerability in Dataease's PostgreSQL Data Source JDBC Connection Parameters. The sslfactory and sslfactoryarg parameters could trigger a bypass vulnerability. This issue has...

CVE-2025-53004

DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, there is a bypass vulnerability in Dataease's Redshift Data Source JDBC Connection Parameters. The sslfactory and sslfactoryarg parameters could trigger a bypass vulnerability. This issue has...

CVE-2025-53005

DataEase (open source BI tool) is affected by CVE-2025-53005 prior to version 2.10.11 due to a bypass vulnerability in the PostgreSQL Data Source JDBC Connection Parameters. Specifically, the sslfactory and sslfactoryarg parameters could trigger the bypass. The issue has been fixed in version 2.1...

CVE-2025-53004 Dataease Redshift Data Source JDBC Connection Parameters Bypass Vulnerability

DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, there is a bypass vulnerability in Dataease's Redshift Data Source JDBC Connection Parameters. The sslfactory and sslfactoryarg parameters could trigger a bypass vulnerability. This issue has...

CVE-2025-53004

DataEase (open source BI tool) prior to version 2.10.11 is affected by a bypass vulnerability in the Redshift Data Source JDBC Connection Parameters. The issue is triggered by the sslfactory and sslfactoryarg parameters, allowing bypass of security controls. A fix is available in version 2.10.11,...

DataEase 授权问题漏洞

DataEase is an open source data visualization and analysis tool from DataEase Open Source. It is used to help users quickly analyze data and gain insight into business trends for business improvement and optimization. An authorization issue vulnerability exists in DataEase versions prior to 2.10....

Debian DSA-5196-1 : libpgjava - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5196 advisory. - PostgreSQL JDBC Driver aka PgJDBC before 42.2.13 allows XXE. CVE-2020-13692 - pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in th...

The vulnerability of the JDBC driver pgjdbc for connecting Java programs to a PostgreSQL database allows a attacker to execute arbitrary code.

The vulnerability of the JDBC driver pgjdbc, which allows Java programs to connect to PostgreSQL databases, is related to the lack of verification for the implementation of the expected interface class. Exploiting this vulnerability can enable a malicious actor to execute arbitrary code through...