Lucene search
K

212 matches found

NVD
NVD
added 2026/06/18 2:17 p.m.10 views

CVE-2026-40455

An SQL Injection vulnerability exists in LMS LAN Management System before commit 4cb30a7 within the "tarifflist.php" module due to insufficient sanitization of the POST "tg" parameter. The application directly concatenates user-supplied array values into an SQL query using "implode", allowing...

8.6CVSS0.00216EPSS
Exploits0References3
CVE
CVE
added 2026/06/18 10:58 a.m.17 views

CVE-2026-40455

Affected software: LMS (LAN Management System). Vulnerability: SQL Injection in the tarifflist.php module caused by insufficient sanitization of the POST tg[] parameter; the code concatenates user-supplied array values into an SQL query using implode(). Impact / access: authenticated attackers ca...

8.6CVSS5.8AI score0.00216EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/02 8:0 a.m.10 views

Malicious code in common-tg-service (npm)

Malicious npm package published by user shetty123 as part of a Telegram account hijacking framework targeting Indian Telegram users. All 502 published versions 1.0.1 through 1.3.207 are malicious. Pairs with ams-ssk, which provides the operator's server-side AMS/CMS infrastructure...

6.2AI score
Exploits0References3
OSV
OSV
added 2026/05/02 8:0 a.m.12 views

MAL-2026-3288 Malicious code in common-tg-service (npm)

Malicious npm package published by user shetty123 as part of a Telegram account hijacking framework targeting Indian Telegram users. All 502 published versions 1.0.1 through 1.3.207 are malicious. Pairs with ams-ssk, which provides the operator's server-side AMS/CMS infrastructure...

6.2AI score
Exploits0References3
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not checking for the existence of pipectx-streamres.tg, which could lead to a null pointer dereference...

6AI score0.00166EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/12 10:17 p.m.5 views

CVE-2024-58300

Siklu MultiHaul TG series devices before version 2.0.0 contain an unauthenticated vulnerability that allows remote attackers to retrieve randomly generated credentials via a network request. Attackers can send a specific hex-encoded command to port 12777 to obtain username and password, enabling...

8.7CVSS7.2AI score0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/11 9:39 p.m.2 views

CVE-2024-58300 Siklu MultiHaul TG Series < 2.0.0 Unauthenticated Credential Disclosure Vulnerability

Siklu MultiHaul TG series devices before version 2.0.0 contain an unauthenticated vulnerability that allows remote attackers to retrieve randomly generated credentials via a network request. Attackers can send a specific hex-encoded command to port 12777 to obtain username and password, enabling...

8.7CVSS6.8AI score0.00347EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989428)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989428 advisory. In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digitaltglistenmdaa 'params' is allocated in...

5.5CVSS6.1AI score0.00226EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/31 12:1 a.m.2 views

EUVD-2025-37259

Malicious code in abeya-tg-api npm...

6.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/31 12:1 a.m.5 views

Malicious code in abeya-tg-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d3c8662c688eccce2f52334ff40029218abfe48b990a194be49c6e01f5fb57 The package abeya-tg-api was found to contain malicious code. Source: ghsa-malware 01b4d597b84a4aa049cd970002730cf004fb59ff7fb53a7c70196644a0c047e4 A...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/31 12:1 a.m.4 views

Malicious code in custom-tg-bot-plan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10cef01d344d07be2f72b365cb97f994a5cea38eef145b5b25de21f1784cd740 The package custom-tg-bot-plan was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2025/10/31 12:1 a.m.2 views

Malicious Package

Overview custom-tg-bot-plan is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/31 12:1 a.m.3 views

EUVD-2025-37254

Malicious code in custom-tg-bot-plan npm...

6.6AI score
Exploits0References1
OSV
OSV
added 2025/10/31 12:1 a.m.3 views

MAL-2025-49248 Malicious code in abeya-tg-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d3c8662c688eccce2f52334ff40029218abfe48b990a194be49c6e01f5fb57 The package abeya-tg-api was found to contain malicious code. Source: ghsa-malware 01b4d597b84a4aa049cd970002730cf004fb59ff7fb53a7c70196644a0c047e4 A...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2025/10/31 12:1 a.m.4 views

Malicious Package

Overview abeya-tg-api is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/31 12:1 a.m.2 views

EUVD-2025-37253

Malicious code in sabaoa-tg-api npm...

6.6AI score
Exploits0References1
EUVD
EUVD
added 2025/10/31 12:1 a.m.2 views

EUVD-2025-37251

Malicious code in sai-tg-api npm...

6.6AI score
Exploits0References1
Snyk
Snyk
added 2025/10/31 12:1 a.m.3 views

Malicious Package

Overview sabaoa-tg-api is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/31 12:1 a.m.4 views

Malicious Package

Overview salli-tg-api is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/31 12:1 a.m.3 views

Malicious code in sabaoa-tg-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 555fda036bf0012711b8105d10f56495dc602cd4bae8463de43ca9cd3c404a1b The package sabaoa-tg-api was found to contain malicious code. Source: ghsa-malware 6876d341cb9d5baf0af61f7e2fba4237ef32a159e156fa127940553d73e1a571...

6.9AI score
Exploits0References1
Rows per page
Query Builder