EUVD-2022-37866

Malicious code in bioql PyPI...

EUVD-2022-49904

Malicious code in bioql PyPI...

EUVD-2022-37864

Malicious code in bioql PyPI...

EUVD-2022-28812

Malicious code in bioql PyPI...

CVE-2022-47129

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42302)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42302 advisory. - In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurren...

Security Bulletin: IBM Sterling Control Center v6.2.x and v6.3.x are vulnerable due to IBM SDK Java Technology Edition vulnerability

Summary IBM SDK, Java Technology Edition Quarterly CPU - Oct 2023 - Includes Oracle October 2023 CPU plus CVE-2023-5676, CVE-2023-22081, CVE-2023-22067 affecting Sterling Control Center v6.2.x and v6.3.x. Vulnerability Details CVEID:CVE-2023-22081 DESCRIPTION: An unspecified vulnerability in Java...

CVE-2023-1409

If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...

CVE-2022-47129

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

Remote code execution

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

CVE-2022-47129

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

CVE-2022-47129

PHPOK v6.3 is identified as affected by a remote code execution (RCE) vulnerability. The provided sources confirm an RCE impact but do not include concrete technical details about the root cause, vectors, or a verified fix. CVSS data from the initial entry indicates a high-severity, network-based...

CVE-2022-47129

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

Sql injection

NS-ASG v6.3 was discovered to contain a SQL injection vulnerability via the component /admin/addikev2.php...

CVE-2023-30242

NS-ASG v6.3 was discovered to contain a SQL injection vulnerability via the component /admin/addikev2.php...

Netcon NS-ASG SQL注入漏洞

Netcon NS-ASG is an application security gateway from China Netcon Technology Netcon. A security vulnerability exists in Netcon NS-ASG v6.3, which originates from allowing access to sensitive information via TunnelId, leading to SQL injection attacks...

CVE-2023-30243

Beijing Netcon NS-ASG Application Security Gateway v6.3 is vulnerable to SQL Injection via TunnelId that allows access to sensitive information...

CVE-2023-30243

Beijing Netcon NS-ASG Application Security Gateway v6.3 is affected by a SQL Injection via TunnelId, enabling access to sensitive information. This CVE (CVE-2023-30243) has a CVSSv3.1 base score of 7.5 (HIGH), with network attack vector, no user interaction, and no privileges required. The vulner...

CVE-2023-30242

NS-ASG v6.3 contains a SQL injection vulnerability in /admin/add_ikev2.php. CVSS 3.1 base score 9.8 (CRITICAL): network vector, no auth, no UI interaction, impacts to confidentiality, integrity, and availability. Root cause details and official remediation/version patch are not specified in the p...

CVE-2022-34966

OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an HTML injection vulnerability via the location parameter at http://ipaddress/:port/ossn/home...