EUVD-2023-34944

Malicious code in bioql PyPI...

Session fixation

A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...

CVE-2023-30563

BD Alaris Systems Manager (SM) versions 12.3 and prior are affected by CVE-2023-30563, an improper input validation vulnerability that allows a malicious file uploaded via the System Manager User Import Function to trigger a Cross-Site Scripting (XSS) condition and hijack a user session. The CVSS...