MAL-2026-3572 Malicious code in @uipath/rpa-legacy-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d4b6219eecb1a7c42be7dd373aba1a49cc25afcadaabb38d6ebf90522094568 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Siemens SICAM SIAPP SDK Command Execution Vulnerability

Siemens SICAM SIAPP SDK is a software development kit from Siemens, Germany. The Siemens SICAM SIAPP SDK suffers from a command execution vulnerability that can be exploited by attackers to cause command injection and full system cracking...

EUVD-2018-17872

Malware in sbrugna...

EUVD-2024-27826

Malicious code in bioql PyPI...

Jhenggao iPublish System 安全漏洞

Jhenggao iPublish System is a presentation platform from Jhenggao Corporation, Taiwan, China. A security vulnerability exists in the Jhenggao iPublish System that originates from vulnerability to arbitrary file read attacks...

PT-2025-21984 · David F. Carr · Rsvpmaker

Name of the Vulnerable Software and Affected Versions: davidfcarr RSVPMarker versions n/a through 11.5.6 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks, potentiall...

Malicious code in file-alb-um-zip-new-mp3-36289-laru-beya-zk5v7-mtjfsf (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e51de7cd47ffcc09a50becd32ea8305fd92871ccb12feaec517cd87f1f2eb811 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

PT-2024-5985

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager versions prior to 2022 SU6 or the 2024 September update Description The vulnerability is related to the deserialization of untrusted data in the agent portal of Ivanti Endpoint Manager, allowing a remote unauthenticated...

CVE-2024-7886

The CVE-2024-7886 entry concerns Scooter Software Beyond Compare versions up to 3.3.5.15075, where the library 7zxa.dll is implicated in an uncontrolled search path issue. The vulnerability requires local access for exploitation, with the root cause described as an unknown functionality within 7z...

CVE-2024-7886 Scooter Software Beyond Compare 7zxa.dll uncontrolled search path

A vulnerability has been found in Scooter Software Beyond Compare up to 3.3.5.15075 and classified as critical. Affected by this vulnerability is an unknown functionality in the library 7zxa.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The real...

Hospital Management System 1.0 Insecure Direct Object Reference / Account Takeover

Exploit Title: Hospital Management System - IDOR + Accaunt Takeover Google Dork: N/A Application: Hospital Management System Date: 27.02.2024 Bugs: IDOR + Accaunt Takeover Exploit Author: SoSPiro Vendor Homepage: https://www.sourcecodester.com/ Software Link:...

Hozard Alarm system security breach

Hozard alarm system is an alarm system from Hozard. The Hozard Alarm system has a security vulnerability that stems from the lack of encryption of RFID tags...

CVE-2022-47557

Vulnerability in ekorCCP and ekorRCI that could allow an attacker with access to the network where the device is located to decrypt the credentials of privileged users, and subsequently gain access to the system to perform malicious actions...

ENTAB ERP 安全漏洞

ENTAB ERP is an enterprise resource management system from ENTAB. A security vulnerability exists in ENTAB ERP version 1.0 that stems from the presence of a username PII leak...

Hackers Behind Twilio Breach Also Targeted Cloudflare Employees

Web infrastructure company Cloudflare on Tuesday disclosed at least 76 employees and their family members received text messages on their personal and work phones bearing similar characteristics as that of the sophisticated phishing attack against Twilio. The attack, which transpired around the...

CVE-2020-26541

A flaw was found in the Linux kernel in certs/blacklist.c, When signature entries for EFICERTX509GUID are contained in the Secure Boot Forbidden Signature Database, the entries are skipped. This can cause a security threat and breach system integrity, confidentiality and even lead to a denial of...

File Upload Vulnerability in Panavision OA Collaboration Office System

Panmicro Collaborative Management Application Platform e-cology is a collaborative business platform with enterprise information portal, knowledge management, data center, workflow management, human resource management, customer and partner management, project management, financial management, an...

Here's How Hacker Activated All Dallas Emergency Sirens On Friday Night

Last weekend when outdoor emergency sirens in Dallas cried loudly for over 90 minutes, many researchers concluded that some hackers hijacked the alarm system by exploiting an issue in a vulnerable computer network. But it turns out that the hackers did not breach Dallas' emergency services comput...

18-Year-Old Student Arrested for Hacking School Computers to Change Grades

An 18-year old Miami University student is facing charges for allegedly breaching the school's computer system to change grades for himself and four other students. Jose Bautista appeared before a judge Friday after he was arrested Thursday by the Miami School Board Police after the principal of...

300000 Confidential records breached at Florida college

Computer hackers broke into a Florida college's computer system and stole the confidential information of nearly 300,000 students statewide and the school's president. State and college officials said a breach that at first involved employees at Northwest Florida State College was much larger tha...