19 matches found
EUVD-2017-9412
Malware in sbrugna...
EUVD-2017-12860
Malware in sbrugna...
EUVD-2023-50506
Malicious code in bioql PyPI...
EUVD-2025-14753
Malicious code in bioql PyPI...
EUVD-2024-26103
Malicious code in bioql PyPI...
CVE-2025-5565
The CVE-2025-5565 entry concerns the WordPress plugin Hide It. It is reported as a Stored XSS vulnerability affecting all versions up to 1.0.1 via the hideit shortcode due to insufficient input sanitization and output escaping. Exploitation requires authenticated access at contributor level or hi...
PT-2025-24037 · WordPress · Esv Bible Shortcode
Name of the Vulnerable Software and Affected Versions: ESV Bible Shortcode plugin versions 1.0.2 and earlier Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's 'esv' shortcode. This allows authenticated attackers with...
CVE-2019-1003071
Jenkins OctopusDeploy Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
IBM Security Verify Access Authorization Issues Vulnerability
IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated acce...
IBM Security Verify Access Cross-Site Scripting Vulnerability (CNVD-2025-06213)
IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated acce...
IBM Security Verify Access Cross-Site Request Forgery Vulnerability
IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated acce...
CVE-2023-38037
ActiveSupport::EncryptedFile writes contents that will be encrypted to a temporary file. The temporary file's permissions are defaulted to the user's current umask settings, meaning that it's possible for other users on the same system to read the contents of the temporary file. Attackers that ha...
IBM Security Verify Access Elevation of Privilege Vulnerability
IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated acce...
IBM Security Verify Access Denial of Service Vulnerability
IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as the Web, mobile, IoT and cloud using risk-based access, single sign-on, integrated access management controls...
PT-2023-3677 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the init cea offsets function in the /arch/x86/mm/cpu entry area.c module of the Linux kernel's memory management subsystem. It concerns the accessibility of th...
IBM Security Verify Access Cross-Site Scripting Vulnerability (CNVD-2022-87651)
IBM Security Verify Access ISAM is a service from IBM USA that improves user access security. The service enables secure and simple access to platforms such as Web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated access management controls,...
IBM Security Verify Access Buffer Overflow Vulnerability
IBM Security Verify Access is a service that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies by using risk-based access, single sign-on, integrated access management controls, identity federation and mobile...
Itetris 1.6.1/1.6.2 Privileged Arbitrary Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2139/info Itetris, or Intelligent Tetris, is a clone of the popular Tetris puzzle game for linux systems. The svgalib version of Itetris is installed setuid root so that it may access video hardware when run by a regular...
GLIBC locale - Format Strings
/ su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a" "\x8d\x5f\x10\x89\x1f\x8d\x47\x18\x89\x47"...