4 matches found
EUVD-2025-19598
Malicious code in bioql PyPI...
Uncontrolled Search Path Element
Overview Affected versions of this package are vulnerable to Uncontrolled Search Path Element via the DLL loading process. An attacker can execute arbitrary code by placing a malicious DLL in a user-writable directory that is included in the system PATH. Remediation Upgrade LizardByte/Sunshine to...
CVE-2025-53096
Sunshine is a self-hosted game stream host for Moonlight. Prior to version 2025.628.4510, the web UI of Sunshine lacks protection against Clickjacking attacks. This vulnerability allows an attacker to embed the Sunshine interface within a malicious website using an invisible or disguised iframe. ...
Sunshine 安全漏洞
Sunshine is an open source self-service game streaming host for Moonlight by LizardByte. A security vulnerability exists in versions prior to Sunshine 2025.628.4510, which stems from a lack of clickjacking protection in the web UI and could lead to unauthorized actions...