10 matches found
EUVD-2017-4418
Malware in sbrugna...
EUVD-2005-2969
Malware in sbrugna...
CVE-2025-48385
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to...
CVE-2025-48385
CVE-2025-48385 affects the Git client. The vulnerability arises when cloning a repository with a bundle URI advertised by the remote server: the client does not validate the bundle, allowing the server to inject a bundle to a location controlled by the attacker, potentially leading to arbitrary c...
CVE-2025-48385
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to...
CVE-2021-46898
views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith"/" but this does not consider a protocol-relative URL e.g., //example.com attack...
SUSE: Security Advisory (SUSE-SU-2024:3747-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-32214
Protocol handlers ms-cxh and ms-cxh-full could have been leveraged to trigger a denial of service. Note: This attack only affects Windows. Other operating systems are not affected. This vulnerability affects Firefox 113, Firefox ESR 102.11, and Thunderbird 102.11...
CVE-2022-39248 matrix-android-sdk2 vulnerable to Olm/Megolm protocol confusion
matrix-android-sdk2 is the Matrix SDK for Android. Prior to version 1.5.1, an attacker cooperating with a malicious homeserver can construct messages that legitimately appear to have come from another person, without any indication such as a grey shield. Additionally, a sophisticated attacker...
The vulnerability in the implementation of the interaction protocol between the “ARM Reliezer” software and the “Communication Server” software of the EKRASMS-SP software suite allows a perpetrator to gain access to user registration data.
The vulnerability of the interaction protocol between the “ARM Reliezer” software and the “Server of Communications” software of the PLC EKRA system is related to the presence of a pre-set password for the database containing user account information. Exploiting this vulnerability could allow an...