EUVD-2026-28318

NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.39, the checkSQL validation function that blocks dangerous SQL keywords e.g., pgreadfile, LOADFILE, dblink is applied on the collections:create and...

CVE-2025-12006

CVE-2025-12006 affects Supermicro BMC firmware on the MBD-X12STW-F board. The vulnerability lies in the firmware validation logic, enabling an attacker to update the system firmware with a specially crafted image. Public sources (NVD/Red Hat/CIRCL) describe the same underlying issue; ARMs to expl...

TERUTEN WebCube 访问控制错误漏洞

TERUTEN WebCube is a web browser security solution from TERUTEN Korea. It prevents unauthorized use of various components of a website. A security vulnerability exists in TERUTEN WebCube versions 1.0.5.5 through 1.2.0.0, which originates from an insufficient file download validation procedure...

CVE-2018-9084

In System Management Module SMM versions prior to 1.06, if an attacker manages to log in to the device OS, the validation of software updates can be circumvented...

CVE-2018-9084

In System Management Module SMM versions prior to 1.06, if an attacker manages to log in to the device OS, the validation of software updates can be circumvented...