EUVD-2021-26296

Malware in sbrugna...

EUVD-2021-7668

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-22178

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions starting from 13.2. Gitlab was vulnerable to SRRF attack through the Prometheus integration...

CVE-2024-41985

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application does not expire the session without logout. This could allow an attacker to get unauthorized access if the session is left idle...

CVE-2024-41986

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application support insecure TLS 1.0 and 1.1 protocol. An attacker could achieve a man-in-the-middle attack and compromise confidentiality and integrity of data...

CVE-2024-41986

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application support insecure TLS 1.0 and 1.1 protocol. An attacker could achieve a man-in-the-middle attack and compromise confidentiality and integrity of data...

CVE-2024-41984

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application improperly handles error while accessing an inaccessible resource leading to exposing the system applications...

CVE-2024-41985

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application does not expire the session without logout. This could allow an attacker to get unauthorized access if the session is left idle...

CVE-2024-41985

CVE-2024-41985 affects Siemens SmartClient modules Opcenter QL Home, SOA Audit and SOA Cockpit (versions 13.2 through 2505; note 2506+ not affected). The root cause is that the affected application does not expire sessions on user inactivity, potentially allowing an attacker to gain unauthorized ...

CVE-2024-41983

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application displays SQL statement in the error messages encountered during the generation of reports using Cockpit tool...

CVE-2023-23501

The issue was addressed with improved memory handling This issue is fixed in macOS Ventura 13.2. An app may be able to disclose kernel memory...

PT-2025-19320 · Seacms · Seacms

Name of the Vulnerable Software and Affected Versions: SeaCMS version 13.2 Description: A problematic vulnerability was found in SeaCMS, affecting unknown code of the file /admin paylog.php. The manipulation of the cstatus argument leads to cross-site scripting. The attack can be initiated...

SeaCMS 安全漏洞

SeaCMS is a free, open source web content management system written in PHP by SeaCMS, Inc. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SeaCMS version 13.2, which stems from improper handling of the parameter cstatus in the file...

PT-2025-19325 · Seacms · Seacms

Name of the Vulnerable Software and Affected Versions: SeaCMS version 13.2 Description: A problematic vulnerability has been found in SeaCMS, affecting the processing of the file /admin pay.php. The manipulation of the cstatus argument leads to cross-site scripting. The attack can be initiated...

SeaCMS 安全漏洞

SeaCMS is a free, open source web content management system written in PHP by SeaCMS, Inc. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SeaCMS version 13.2 that stems from the DoTranExecSql parameter not being handled correctly, which...

Unspecified Vulnerability in SeaCMS (CNVD-2024-39253)

SeaCMS is a free, open source web content management system written in PHP by SeaCMS. The system has been designed primarily to manage video-on-demand resources. A security vulnerability exists in SeaCMS version 13.2, which can be exploited by an attacker to execute arbitrary code on the server b...

SeaCMS 安全漏洞

SeaCMS is a free, open source web content management system written in PHP by SeaCMS. The system has been designed primarily to manage video-on-demand resources. A security vulnerability exists in SeaCMS version 13.2, which can be exploited by an attacker to execute arbitrary code on the server b...

XWiki 13.2-rc-1 < 14.10.21, 15.0-rc-1 < 15.5.5, 15.6-rc-1 < 15.10.1 Multiple Vulnerabilities

Xwiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki"; ifdescription...

CVE-2024-46979 Data leak of notification filters of users in XWiki Platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to get access to notification filters of any user by using a URL such as...

XWiki Platform 安全漏洞

XWiki Platform is XWiki's open source suite of Wiki platforms for creating web collaboration applications. A security vulnerability exists in XWiki Platform version 13.2-rc-1 and earlier, which stems from incorrect privilege checking that allows any user who knows the ID of a specific notificatio...