EUVD-2025-10095

Malicious code in bioql PyPI...

CVE-2025-27429

SAP S/4HANA allows an attacker with user privileges to exploit a vulnerability in the function module exposed via RFC. This flaw enables the injection of arbitrary ABAP code into the system, bypassing essential authorization checks. This vulnerability effectively functions as a backdoor, creating...

Exploit for Improper Authentication in Apache Shenyu

Apache ShenYu Admin has a vulnerability that allows for authenti...

Admin can abuse grantSlingshot and steal user funds

Handle kenzo Vulnerability details After user has .approved ApprovalHandler, admin can grantSlingshot himself, and then call ApprovalHandler.transferFrom with parameters that will transfer all tokens to himself before the user calls Slingshot's executeTrades. Although this vulnerability requires ...

Hackers Exploit Zero-Day Bugs in Draytek Devices to Target Enterprise Networks

Cybersecurity researchers with Qihoo 360's NetLab today unveiled details of two recently spotted zero-day cyberattack campaigns in the wild targeting enterprise-grade networking devices manufactured by Taiwan-based DrayTek. According to the report, at least two separate groups of hackers exploite...

SYMSA-2007-008: Autodesk Backburner 3.0.2 System Backdoor

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Consulting Services www.symantec.com Security Advisory Advisory ID: SYMSA-2007-008 Advisory Title: Autodesk Backburner 3.0.2 : System Backdoor Author: Dave Hartley and Stephen Kapp [email protected] Release Date: 12-09-2007 Application...