1411 matches found
EUVD-2024-21144
Malicious code in bioql PyPI...
EUVD-2024-19524
Malicious code in bioql PyPI...
EUVD-2023-47220
Malicious code in bioql PyPI...
EUVD-2023-49882
Malicious code in bioql PyPI...
EUVD-2023-50904
Malicious code in bioql PyPI...
EUVD-2023-39022
Malicious code in bioql PyPI...
EUVD-2024-36366
Malicious code in bioql PyPI...
EUVD-2023-40496
Malicious code in bioql PyPI...
EUVD-2023-47218
Malicious code in bioql PyPI...
EUVD-2024-43226
Malicious code in bioql PyPI...
CVE-2025-53595
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.2 2025/07/31...
QNAP Qsync Central SQL注入漏洞
QNAP Qsync Central is a private cloud synchronization service launched by Weilian QNAP, which is mainly used to achieve real-time synchronization and backup of files between devices, with functions similar to GoogleDrive, Dropbox and other cloud storage services, but with the data stored in the...
OmniParser Remote Code Execution Vulnerability
Binding to an unrestricted ip address in GitHub allows an unauthorized attacker to execute code over a network...
CVE-2024-45325
Fortinet FortiDDoS-F VPN/OSS component is affected by an OS Command Injection (CWE-78) in FortiDDoS-F versions 7.0.0–7.02 and earlier than 6.6.3. The root cause is improper neutralization of special elements in CLI requests, enabling a privileged attacker to execute unauthorized commands via craf...
QNAP Qsync Central SQL Injection Vulnerability
QNAP Qsync Central is a private cloud synchronization service launched by QNAP, which is mainly used to achieve real-time synchronization and backup of files between devices. QNAP Qsync Central suffers from a SQL injection vulnerability that stems from the application's lack of validation of...
QNAP Qsync Central SQL Injection Vulnerability (CNVD-2025-23620)
QNAP Qsync Central is a private cloud synchronization service launched by QNAP, which is mainly used to achieve real-time synchronization and backup of files between devices. A SQL injection vulnerability exists in QNAP Qsync Central, which can be exploited by attackers to execute unauthorized co...
CVE-2025-29894
CVE-2025-29894 affects QNAP Qsync Central. The vulnerability is an SQL injection in Qsync Central that can be exploited by an authenticated remote attacker to execute unauthorized commands. The issue is addressed in Qsync Central 4.5.0.7 and later. Affected component: Qsync Central (private cloud...
CVE-2025-29893
The CVE-2025-29893 issue affects QNAP Qsync Central and is caused by an SQL injection vulnerability from lack of validation of externally entered SQL statements. A remote attacker who has a user account could exploit this to execute unauthorized code or commands. The vulnerability is rated HIGH (...
QNAP Qsync Central SQL注入漏洞
QNAP Qsync Central is a private cloud synchronization service launched by QNAP, which is mainly used to achieve real-time synchronization and backup of files between devices. QNAP Qsync Central suffers from a SQL injection vulnerability that stems from the application's lack of validation of...
OpenBao Code Injection Vulnerability
OpenBao is OpenBao open source a sensitive data management software . A code injection vulnerability exists in OpenBao 2.3.1 and earlier versions that can be exploited by attackers to cause unauthorized code execution and network access...