CVE-2019-20676

Certain NETGEAR devices are affected by lack of access control at the function level. This affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before...

EUVD-2007-6271

Malware in sbrugna...

EUVD-2018-0585

Malware in sbrugna...

EUVD-2010-1732

Malware in sbrugna...

EUVD-2003-0597

Malware in sbrugna...

EUVD-2018-0015

Malware in sbrugna...

EUVD-2013-2057

Malware in sbrugna...

EUVD-2011-0051

Malware in sbrugna...

EUVD-2014-3886

Malware in sbrugna...

EUVD-2005-0800

Malware in sbrugna...

EUVD-2018-6731

Malware in sbrugna...

EUVD-2016-9617

Malware in sbrugna...

EUVD-2022-3507

Malicious code in bioql PyPI...

Curl 8.5.0 < 8.14.0 Improper Certificate Validation (CVE-2025-5025)

The version of Curl installed on the remote host is is missing security update. It is, therefore, affected by a improper certificate validation vulnerability. - libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when...

CVE-2010-3717

The t3libdiv::validEmail function in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly restrict input to filtervar FILTERVALIDATEEMAIL operations in PHP, which allows remote attackers to cause a denial of service memory consumption and application crash via a...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : NLTK vulnerabilities (USN-7365-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7365-1 advisory. It was discovered that NLTK contained a regex that is susceptible to catastrophic backtracking. An attacker could...

BIT-PYTHON-MIN-2020-8492

Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service ReDoS attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking...

BIT-PHP-MIN-2020-7068 Use of freed hash key in the phar_parse_zipfile function

In PHP versions 7.2.x below 7.2.33, 7.3.x below 7.3.21 and 7.4.x below 7.4.9, while processing PHAR files using phar extension, pharparsezipfile could be tricked into accessing freed memory, which could lead to a crash or information disclosure...

PT-2024-3818

Name of the Vulnerable Software and Affected Versions aiohttp versions prior to 3.9.4 Description The issue is related to an infinite loop that occurs when the aiohttp server processes a specially crafted POST multipart/form-data request. This allows an attacker to stop the application from servi...

PT-2023-12639 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-12 Description: The issue is related to a tapjacking/overlay attack in the MasterClearConfirmFragment.java file. This could lead to a local denial of service with no additional execution privileges...