19 matches found
EUVD-2025-19541
Malicious code in bioql PyPI...
CVE-2025-48979
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access...
Ubiquiti UISP Application 安全漏洞
Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in the Ubiquiti UISP Application that stems from improper input validation and could lead to command injection...
CVE-2025-48979
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access...
CVE-2025-48979
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access...
CVE-2025-48979
CVE-2025-48979 refers to an improper input validation in the UISP Application that could enable a command injection. The vulnerability is described as exploitable by a malicious actor with high privileges and local access, potentially allowing arbitrary command execution within the application's ...
PT-2025-35151
Name of the Vulnerable Software and Affected Versions: UISP Application affected versions not specified Description: An improper input validation issue exists in the UISP Application. This could allow a malicious actor with high privileges and local access to execute commands through command...
CVE-2025-27217
A Server-Side Request Forgery SSRF in the UISP Application may allow a malicious actor with certain permissions to make requests outside of UISP Application scope...
CVE-2025-27217
A Server-Side Request Forgery SSRF in the UISP Application may allow a malicious actor with certain permissions to make requests outside of UISP Application scope...
CVE-2025-27216
Multiple Incorrect Permission Assignment for Critical Resource in UISP Application may allow a malicious actor with certain permissions to escalate privileges...
Ubiquiti UISP Application 安全漏洞
Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in the Ubiquiti UISP Application that originates from server-side request forgery and could result in out-of-scope requests...
Ubiquiti UISP Application 安全漏洞
Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in the Ubiquiti UISP Application that stems from improper assignment of critical resource privileges, which could result in elevated privileges...
PT-2025-34176 · Ubiquiti · Uisp Application
Name of the Vulnerable Software and Affected Versions: UISP Application affected versions not specified Description: A Server-Side Request Forgery SSRF exists in the UISP Application. This issue may allow a malicious actor with certain permissions to make requests outside of the application’s...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...
CVE-2025-24290
CVE-2025-24290 affects UISP Application versions 2.4.206 and earlier. The dashboards and related components are vulnerable to multiple authenticated SQL Injection flaws that could enable a low-privilege user to escalate privileges. Exploitation status is not detailed in the provided documents. Ro...
PT-2025-27379 · Unknown · Uisp Application
Name of the Vulnerable Software and Affected Versions: UISP Application versions 2.4.206 and earlier Description: Multiple Authenticated SQL Injection vulnerabilities could allow a malicious actor with low privileges to escalate privileges. Recommendations: For UISP Application versions 2.4.206 a...