CVE-2019-25756

Joomla! Component vAccount 2.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the vid parameter. Attackers can send GET requests to the vaccount-dashboard/expense endpoint with crafted SQL payloa...

CVE-2019-25756 Joomla! Component vAccount 2.0.2 SQL Injection via vaccount-dashboard

Joomla! Component vAccount 2.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the vid parameter. Attackers can send GET requests to the vaccount-dashboard/expense endpoint with crafted SQL payloa...

EUVD-2019-20192

Joomla! Component vAccount 2.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the vid parameter. Attackers can send GET requests to the vaccount-dashboard/expense endpoint with crafted SQL payloa...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: afs: Increase the buffer size in afsupdatevolumestatus. The maximum length of the volume-vid value is 20 characters. Therefore, increase the size of idbuf to 24 to avoid overflow. Found by the Linux Verification Center...

CVE-2026-7705

A flaw has been found in JD Cloud JDCOS 4.5.1.r4518. This vulnerability affects the function setiptvinfo of the file /jdcap of the component Service Interface. Executing a manipulation of the argument vid can lead to command injection. It is possible to launch the attack remotely. The exploit has...

CVE-2026-7705

A flaw has been found in JD Cloud JDCOS 4.5.1.r4518. This vulnerability affects the function setiptvinfo of the file /jdcap of the component Service Interface. Executing a manipulation of the argument vid can lead to command injection. It is possible to launch the attack remotely. The exploit has...

EUVD-2026-26843

A flaw has been found in JD Cloud JDCOS 4.5.1.r4518. This vulnerability affects the function setiptvinfo of the file /jdcap of the component Service Interface. Executing a manipulation of the argument vid can lead to command injection. It is possible to launch the attack remotely. The exploit has...

JD Cloud JDCOS 注入漏洞

JD Cloud JDCOS is a cloud object storage service provided by JD.com, a Chinese e-commerce company. The version JD Cloud JDCOS 4.5.1.r4518 contains a vulnerability due to an injection flaw in the Service Interface component. This flaw stems from the function setiptvinfo in the file/jdcap, which...

PT-2026-36722

Name of the Vulnerable Software and Affected Versions JD Cloud JDCOS version 4.5.1.r4518 Description A flaw in the Service Interface component allows remote command injection. The issue exists within the set iptv info function of the '/jdcap' file, where improper handling of the vid argument...

CVE-2021-47915

PHP Melody version 3.0 contains a remote SQL injection vulnerability in the video edit module that allows authenticated attackers to inject malicious SQL commands. Attackers can exploit the unvalidated 'vid' parameter to execute arbitrary database queries and potentially compromise the web...

PHPSUGAR PHP Melody SQL注入漏洞

PHPSUGAR PHP Melody is a content management system developed by PHPSUGAR. Version 3.0 of PHPSUGAR PHP Melody contains an SQL injection vulnerability. This vulnerability stems from the vid parameter in the video editing module, which has a remote SQL injection vulnerability. This could allow...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992909)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992909 advisory. In the Linux kernel, the following vulnerability has been resolved: ubi: ensure that VID header offset + VID header size dumpstack lib/dumpstack.c:88 inline...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990156)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990156 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix UBSAN warning in kvdpm.c Adds bounds check for sumovidmappingentry. Tenable has...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990158)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990158 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix UBSAN warning in kvdpm.c Adds bounds check for sumovidmappingentry. Tenable has...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989904)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989904 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix UBSAN warning in kvdpm.c Adds bounds check for sumovidmappingentry. Tenable has...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990374)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990374 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix UBSAN warning in kvdpm.c Adds bounds check for sumovidmappingentry. Tenable has...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989646)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989646 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix UBSAN warning in kvdpm.c Adds bounds check for sumovidmappingentry. Tenable has...

EUVD-2017-8870

Malware in sbrugna...

EUVD-2025-23652

Malicious code in bioql PyPI...

EUVD-2023-59924

Malicious code in bioql PyPI...