19 matches found
EUVD-2025-19541
Malicious code in bioql PyPI...
CVE-2025-48979
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access...
Ubiquiti UISP Application 安全漏洞
Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in the Ubiquiti UISP Application that stems from improper input validation and could lead to command injection...
CVE-2025-48979
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access...
CVE-2025-48979
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access...
CVE-2025-48979
CVE-2025-48979 refers to an improper input validation in the UISP Application that could enable a command injection. The vulnerability is described as exploitable by a malicious actor with high privileges and local access, potentially allowing arbitrary command execution within the application's ...
PT-2025-35151
Name of the Vulnerable Software and Affected Versions: UISP Application affected versions not specified Description: An improper input validation issue exists in the UISP Application. This could allow a malicious actor with high privileges and local access to execute commands through command...
CVE-2025-27217
A Server-Side Request Forgery SSRF in the UISP Application may allow a malicious actor with certain permissions to make requests outside of UISP Application scope...
CVE-2025-27217
A Server-Side Request Forgery SSRF in the UISP Application may allow a malicious actor with certain permissions to make requests outside of UISP Application scope...
CVE-2025-27216
Multiple Incorrect Permission Assignment for Critical Resource in UISP Application may allow a malicious actor with certain permissions to escalate privileges...
PT-2025-34176 · Ubiquiti · Uisp Application
Name of the Vulnerable Software and Affected Versions: UISP Application affected versions not specified Description: A Server-Side Request Forgery SSRF exists in the UISP Application. This issue may allow a malicious actor with certain permissions to make requests outside of the application’s...
Ubiquiti UISP Application 安全漏洞
Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in the Ubiquiti UISP Application that stems from improper assignment of critical resource privileges, which could result in elevated privileges...
Ubiquiti UISP Application 安全漏洞
Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in the Ubiquiti UISP Application that originates from server-side request forgery and could result in out-of-scope requests...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
CVE-2025-24290 affects UISP Application versions 2.4.206 and earlier. The dashboards and related components are vulnerable to multiple authenticated SQL Injection flaws that could enable a low-privilege user to escalate privileges. Exploitation status is not detailed in the provided documents. Ro...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
PT-2025-27379 · Unknown · Uisp Application
Name of the Vulnerable Software and Affected Versions: UISP Application versions 2.4.206 and earlier Description: Multiple Authenticated SQL Injection vulnerabilities could allow a malicious actor with low privileges to escalate privileges. Recommendations: For UISP Application versions 2.4.206 a...