EUVD-2021-22132

Malware in sbrugna...

EUVD-2021-22131

Malware in sbrugna...

EUVD-2024-38297

Malicious code in bioql PyPI...

EUVD-2024-21270

Malicious code in bioql PyPI...

CVE-2021-35490

Thruk before 2.44 allows XSS for a quick command...

CVE-2024-23822 Thruk Incorrect limitation of a pathname to a restricted directory (Path Traversal) (CWE-22)

Thruk is a multibackend monitoring webinterface. Prior to 3.12, the Thruk web monitoring application presents a vulnerability in a file upload form that allows a threat actor to arbitrarily upload files to the server to any path they desire and have permissions for. This vulnerability is known as...

CVE-2023-34096 Thruk has Path Traversal Vulnerability in panorama.pm

Thruk is a multibackend monitoring webinterface which currently supports Naemon, Icinga, Shinken and Nagios as backends. In versions 3.06 and prior, the file panorama.pm is vulnerable to a Path Traversal vulnerability which allows an attacker to upload a file to any folder which has write...