10 matches found
MAL-2025-26289 Malicious code in mi-angular-vmp-auth-service (npm)
The package mi-angular-vmp-auth-service was found to contain malicious code...
Malicious code in mi-angular-vmp-auth-service (npm)
The package mi-angular-vmp-auth-service was found to contain malicious code...
MAL-2025-4206 Malicious code in ark-vmp-reverse (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 28ac22df743a6a65eed4d1d25f66c0f3eb42c5235dc749a84162883d313bd415 During installation, a website with the current working dir is being called. It looks like something between spam and pentest as the website is most probably n...
Malicious code in ark-vmp-reverse (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 28ac22df743a6a65eed4d1d25f66c0f3eb42c5235dc749a84162883d313bd415 During installation, a website with the current working dir is being called. It looks like something between spam and pentest as the website is most probably n...
CVE-2024-38289
A boolean-based SQL injection issue in the Virtual Meeting Password VMP endpoint in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to extract hashed passwords from the database, and authenticate to the application, via crafted SQL input...
CVE-2024-38289
A boolean-based SQL injection issue in the Virtual Meeting Password VMP endpoint in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to extract hashed passwords from the database, and authenticate to the application, via crafted SQL input...
CVE-2016-6377
Media Origination System Suite Software 2.6 and earlier in Cisco Virtual Media Packager VMP allows remote attackers to bypass authentication and make arbitrary Platform and Applications Manager PAM API calls via unspecified vectors, aka Bug ID CSCuz52110...
Authentication flaw
Media Origination System Suite Software 2.6 and earlier in Cisco Virtual Media Packager VMP allows remote attackers to bypass authentication and make arbitrary Platform and Applications Manager PAM API calls via unspecified vectors, aka Bug ID CSCuz52110...
CVE-2016-6377
Media Origination System Suite Software 2.6 and earlier in Cisco Virtual Media Packager VMP allows remote attackers to bypass authentication and make arbitrary Platform and Applications Manager PAM API calls via unspecified vectors, aka Bug ID CSCuz52110...
CVE-2016-6377
CVE-2016-6377 affects Cisco Virtual Media Packager (VMP) versions 2.6 and earlier. The vulnerability is due to lack of proper authentication for the Platform and Applications Manager (PAM) API, allowing an unauthenticated, remote attacker to bypass controls and issue arbitrary PAM API calls via u...