Drupal 跨站脚本漏洞

Drupal is an open-source content management system developed using the PHP language by the Drupal community. Versions of Drupal 7.x-1.11 and earlier, including 7.x-1.x, have a cross-site scripting vulnerability. This vulnerability stems from the rendering pipeline of the Term Reference Tree...

PT-2026-6098

Name of the Vulnerable Software and Affected Versions Movable Type versions 7.x and 8.4.x Description Movable Type has a stored cross-site scripting issue in the Edit Comment functionality. An attacker could execute arbitrary script in a logged-in user’s web browser by storing crafted input. The...

CVE-2025-14556

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Drupal Flag allows Cross-Site Scripting XSS.This issue affects Flag: from 7.X-3.0 through 7.X-3.9...

react-router 输入验证错误漏洞

react-router is a Remix open source declarative routing for React. An input validation error vulnerability exists in React Router versions 6.0.0 through 6.30.1 and 7.0.0 through 7.9.5, which originates in specially crafted routes and could lead to redirection attacks...

Fedora 43 : python-mkdocs-include-markdown-plugin (2025-1b1bb708af)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-1b1bb708af advisory. v7.2.0 New features - Add new argument order to sort multiple inclusions. v7.1.8 Bug fixes - Escape substitution placeholders to prevent malformed...

StarCharge Artemis AC Charger 安全漏洞

StarCharge Artemis AC Charger is an AC charger from StarCharge Singapore. A security vulnerability exists in the StarCharge Artemis AC Charger version 7-22 kW 1.0.4, which stems from the use of a hard-coded AES key, which could allow an attacker to forge or decrypt a valid login token...

EUVD-2019-19114

Malware in sbrugna...

EUVD-2013-0220

Malware in sbrugna...

EUVD-2020-28169

Malware in sbrugna...

EUVD-2018-7482

Malware in sbrugna...

EUVD-2014-1476

Malware in sbrugna...

EUVD-2018-13026

Malware in sbrugna...

EUVD-2019-6071

Malware in sbrugna...

EUVD-2024-51510

Malicious code in bioql PyPI...

EUVD-2024-51489

Malicious code in bioql PyPI...

EUVD-2025-16195

Malicious code in bioql PyPI...

EUVD-2024-51185

Malicious code in bioql PyPI...

OPENSUSE-SU-2025:15396-1 ffmpeg-7-7.1.1-8.1 on GA media

These are all security issues fixed in the ffmpeg-7-7.1.1-8.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15177-1 ffmpeg-7-7.1.1-4.1 on GA media

These are all security issues fixed in the ffmpeg-7-7.1.1-4.1 package on the GA media of openSUSE Tumbleweed...

CVE-2024-12907

Kentico CMS in version 7 is vulnerable to a Reflected XSS attacks through manipulation of a specific GET request parameter sent to /CMSMessages/AccessDenied.aspx endpoint. Notably, support for this version of Kentico ended in 2016. Version 8 was tested as well and does not contain this...