28 matches found
CVE-2026-7816
OS command injection CWE-78 vulnerability in pgAdmin 4 Import/Export query export. User-supplied input was interpolated directly into a psql \copy metacommand template without sanitization. An authenticated user could inject " TO PROGRAM 'cmd'" to break out of the \copy ... context and achieve...
Sigstore Timestamp Authority 安全漏洞
Sigstore Timestamp Authority is an open-source RFC3161 timestamp authorization software developed by sigstore. Versions of Sigstore Timestamp Authority 2.0.5 and earlier contained security vulnerabilities. These vulnerabilities stemmed from issues with the VerifyTimestampResponse function, which...
EUVD-2020-5533
Malware in sbrugna...
EUVD-2013-6234
Malware in sbrugna...
EUVD-2025-6435
Malicious code in bioql PyPI...
CVE-2025-20364
A vulnerability in the Device Analytics action frame processing of Cisco Wireless Access Point AP Software could allow an unauthenticated, adjacent attacker to inject wireless 802.11 action frames with arbitrary information. This vulnerability is due to insufficient verification checks of incomin...
CVE-2023-41996
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch...
CVE-2025-27593
The product can be used to distribute malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems...
CVE-2025-27593
CVE-2025-27593 affects SICK DL100-2xxxxxxx sensors. The issue arises from missing download verification checks in SICK’s distribution flow (SDD Device Drivers), which could allow a malicious payload to be delivered and execute code on target systems. The NVD entry assigns a CVSS 3.1 base score of...
CVE-2020-13272
OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow...
CVE-2024-5912 Cortex XDR Agent: Improper File Signature Verification Checks
An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked...
GitLab 12.3 < 12.9.8 / 12.10 < 12.10.7 / 13.0 < 13.0.1 (CVE-2020-13272)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow CVE-2020-13272 Note that Nessus has not tested for this issue but...
BIT-GITLAB-2020-13272
OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow...
Cross-site Scripting Vulnerability on Data Import
Introduction This write-up describes a vulnerability found in Label Studio, a popular open source data labeling tool. The vulnerability affects all versions of Label Studio prior to 1.10.1 and was tested on version 1.9.2.post0. Overview Label Studio had a remote import feature allowed users to...
CVE-2023-41996
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch...
CVE-2023-41996
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch...
CVE-2023-41996
The CVE-2023-41996 issue pertains to Apple macOS Ventura 13.6 where apps that fail verification checks may still launch. The fixed status is explicitly tied to macOS Ventura 13.6 with an update described as “improved checks.” The underlying risk is described as a verification/launch-time issue ra...
CVE-2023-41996
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch...
PT-2023-28206 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.6 Description: The issue was addressed with improved checks. Apps that fail verification checks may still launch. Recommendations: For versions prior to 13.6, update to macOS Ventura 13.6 to resolve the issue...
CVE-2020-13272
OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow...