PostgreSQL SQL注入漏洞

PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Versions of PostgreSQL prior to 18.4 and 17.10 contained an SQL...

CLSA-2026-1777946639 quagga: Fix of CVE-2018-5381

CVE-2018-5381: bgpd capability parser can enter an infinite loop on invalid OPEN messages whose Multi-Protocol capability has an unrecognized AFI/SAFI, causing a denial of service...

CVE-2026-41926

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the firewall.cgi binary across five request handlers that apply insufficient input validation. Attackers can inject arbitrary shell commands through vulnerable parameters like websURLFilter,...

CVE-2025-14769

CVE-2025-14769 maps to FreeBSD ipfw denial of service. The issue is in the tcp-setmss handler, which may free packet data and error out without halting rule processing, allowing a subsequent rule to pass and causing a NULL pointer dereference. Exploitation would yield a DoS on a remote host using...

EUVD-2025-117051

Malicious code in subsequent-fuchsia-mongoose npm...

Malicious code in subsequent_walrus_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 861c7955dfeea57d174d87d27a5c5ffb0500e9b2af898396bc90b533fe058809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-88646

Malicious code in subsequentwalrusz3n npm...

MAL-2025-117238 Malicious code in subsequent_walrus_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 861c7955dfeea57d174d87d27a5c5ffb0500e9b2af898396bc90b533fe058809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-75521

Malicious code in subsequentgamefowl-smiletea npm...

Malicious code in subsequent_beetle_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84710acaff4fcdbd02b85f1f39c3708b7068652bf8549f7b941bf58a5a1ca8c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-80395

Malicious code in subsequentbatreplicateautomation npm...

EUVD-2025-80394

Malicious code in subsequentbeetle0xrequest npm...

EUVD-2025-73454

Malicious code in subsequentlampreyz3n npm...

EUVD-2025-73456

Malicious code in subsequentelephantz3n npm...

EUVD-2025-73457

Malicious code in subsequentbugz3n npm...

EUVD-2025-51736

Malicious code in subsequent-pink-meerkat npm...

EUVD-2025-51735

Malicious code in subsequent-red-leopard npm...

EUVD-2025-51738

Malicious code in subsequent-chocolate-lizard npm...

EUVD-2025-51739

Malicious code in subsequent-beige-sawfish npm...

EUVD-2025-51737

Malicious code in subsequent-copper-python npm...