CVE-2019-25719

Dräger Infinity Acute Care System and Standalone Infinity M540 monitors running VG4.1.1, VG4.0.3, and lower are affected by network message handling vulnerabilities. The issue allows network-adjacent attackers to spoof or tamper with data and to cause denial-of-service conditions. If an attacker ...

CVE-2026-49001

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

PT-2026-43568

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

CVE-2025-32745

Dell PowerFlex Manager, versions =4.6.2, contains an Improper Certificate Validation vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information tampering...

PT-2026-38964

Dell PowerScale OneFS versions 9.5.0.0 through 9.5.1.6, 9.6.0.0 through 9.7.1.13, 9.8.0.0 through 9.10.1.5 and 9.11.0.0 through 9.12.0.1 contains an Insufficient Logging vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information...

CVE-2025-67733

Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious user can use scripting commands to inject arbitrary information into the response stream for the given client, potentially corrupting or returning tampered data to other users on the same...

CVE-2026-22279

Dell PowerScale OneFS, versions prior 9.13.0.0, contains an insufficient logging vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to information tampering...

CVE-2025-46636

Dell Encryption (versions prior to 11.12.1) is affected by an Improper Link Resolution Before File Access ("Link Following") vulnerability. A low-privilege, local attacker could exploit this to tamper with information. The issue is documented across multiple sources (NVD, Red Hat, CVE lists) with...

EUVD-2025-175362

Dell Alienware Command Center 6.x AWCC, versions prior to 6.10.15.0, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information Tampering...

CVE-2025-46362

Dell Alienware Command Center 6.x AWCC, versions prior to 6.10.15.0, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information Tampering...

Dell Alienware Command Center 安全漏洞

DELL Alienware Command Center is Dell's proprietary control software for Alienware-branded computers, which is used to customize hardware features, optimize performance and manage game settings. DELL Alienware Command Center has a temporary file insecurity vulnerability that can be exploited by...

MAL-2025-179560 Malicious code in anais-papoa-0piaia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c83fbf02c832778dadc49bae9dbee897a7739eabfb6154ad802d5add51fdfc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-153544 Malicious code in avomainah-fras-ofurataru (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 675fc333aa509017925e75e742b0e3ba2d2d348294f6cfe38128c4272a71150b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-153190 Malicious code in avminah-fagmas-adimasi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d93cf8dbb09cf07c371be10dfb48b665cc44bdd67c53a52a6ed6df4758bc6f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ade-saguer77-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e79a709328930bcf040d23b3ef3d5e741d3a9dd78afb775a313a7f31fba0874d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-85310 Malicious code in extreme_starfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c44111ee67c28240e722fe034bda57b400665fdce5cd6dd5e3403811cbd5fe57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iwan-gandul91-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85bcfa284abfe62042fd664ae986d7d22b6f7cd543f462f27a7695bd8f800b40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Online Event Judging System index.php File SQL Injection Vulnerability

Online Event Judging System is an online event judging system. The Online Event Judging System suffers from a SQL injection vulnerability that originates from the /index.php file not securely filtering the Username parameter. An attacker can exploit this vulnerability by constructing a malicious...

Code-Projects Online Event Judging System SQL注入漏洞

Online Event Judging System is an online event judging system. The Online Event Judging System suffers from a SQL injection vulnerability that originates from the /index.php file not securely filtering the Username parameter. An attacker can exploit this vulnerability by constructing a malicious...

DEBIAN-CVE-2025-46801

Pgpool-II provided by PgPool Global Development Group contains an authentication bypass by primary weakness vulnerability. if the vulnerability is exploited, an attacker may be able to log in to the system as an arbitrary user, allowing them to read or tamper with data in the database, and/or...