Siemens SENTRON PAC Out-of-bounds Read (CVE-2020-13987)

The TCP/IP stack uIP in affected devices is vulnerable to out-of-bounds read when calculating the checksum for IP packets. An attacker located in the same network could trigger a Denial-of-Service condition on the device by sending a specially crafted IP packet. This plugin only works with...

CVE-2025-14190 Chanjet TPlus sql injection

A flaw has been found in Chanjet TPlus up to 20251121. Affected by this vulnerability is an unknown functionality of the file /tplus/ajaxpro/Ufida.T.SM.UIP.MultiCompanySettingController,Ufida.T.SM.UIP.ashx?method=Load. This manipulation of the argument currentAccId causes sql injection. It is...

PT-2025-47672

The UiPress lite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.08. This is due to missing capability checks in the 'uip process block query' AJAX function. This makes it possible for authenticated attackers, with subscriber-level...

PT-2025-47687

The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the uip save site option function in all versions up to, and including, 3.5.08. This makes it possible for...

EUVD-2020-6156

Malware in sbrugna...

EUVD-2020-9390

Malware in sbrugna...

EUVD-2020-6154

Malware in sbrugna...

EUVD-2020-9391

Malware in sbrugna...

EUVD-2020-17069

Malware in sbrugna...

EUVD-2020-6157

Malware in sbrugna...

EUVD-2020-6155

Malware in sbrugna...

EUVD-2020-17068

Malware in sbrugna...

EUVD-2020-9393

Malware in sbrugna...

EUVD-2014-4802

Malware in sbrugna...

EUVD-2020-9392

Malware in sbrugna...

CVE-2023-34100

Contiki-NG is an open-source, cross-platform operating system for IoT devices. When reading the TCP MSS option value from an incoming packet, the Contiki-NG OS does not verify that certain buffer indices to read from are within the bounds of the IPv6 packet buffer, uipbuf. In particular, there is...

Malicious code in uip-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25f46be27e930ca9ae73733efaa40553b11f3702993cd8b01b99ee6ca7940dfc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8043 Malicious code in uip-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25f46be27e930ca9ae73733efaa40553b11f3702993cd8b01b99ee6ca7940dfc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

RHEL 7 : iscsi-initiator-utils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - iscsi-initiator-utils: Heap-based buffer overflow in processiscsidbroadcast CVE-2017-17840 - An issue was...

Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2023-2453)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...