757 matches found
CVE-2026-46588
Summary: CVE-2026-46588 is an Improper Input Validation vulnerability in Apache Camel affecting versions up to 4.14.7 and 4.15.0–4.18.2, 4.19.0–4.20.0. The issue stems from input validation weaknesses in Camel’s components, enabling potential impact on confidentiality, integrity, and availability...
Ulterius Server < 1.9.5.0 - Directory Traversal
Ulterius Server before 1.9.5.0 allows HTTP server directory traversal via the process function in RemoteTaskServer/WebServer/HttpServer.cs. id: CVE-2017-16806 info: name: Ulterius Server 1.9.5.0 - Directory Traversal author: geeknik severity: high description: Ulterius Server before 1.9.5.0 allow...
Joomla! Webservice - Password Disclosure
An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints. id: CVE-2023-23752 info: name: Joomla! Webservice - Password Disclosure author: badboycxcc,Sascha Brendel severity: medium description: | An issue was discovered in...
SUSE CVE-2026-29167
Use After Free vulnerability in Apache HTTP Server with modldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...
EUVD-2026-21012
Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, from 10.0.0-M1 through 10.1.52, from 9.0.13 through 9..115, from 8.5.38 through 8.5.100, from 7.0.100 through 7.0.109. Users are...
MiracleLinux 7 : nss-3.21.3-2.el7, nss-util-3.21.3-1.1.el7 (AXSA:2016-941:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-941:01 advisory. nss Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...
CVE-2021-22557
SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173...
CVE-2025-23210
phpoffice/phpspreadsheet is a pure PHP library for reading and writing spreadsheet files. Affected versions have been found to have a Bypass of the Cross-site Scripting XSS sanitizer using the javascript protocol and special characters. This issue has been addressed in versions 3.9.0, 2.3.7, 2.1....
CVE-2022-31135
Akashi is an open source server implementation of the Attorney Online video game based on the Ace Attorney universe. Affected versions of Akashi are subject to a denial of service attack. An attacker can use a specially crafted evidence packet to make an illegal modification, causing a server...
CVE-2022-23510
cube-js is a headless business intelligence platform. In version 0.31.23 all authenticated Cube clients could bypass SQL row-level security and run arbitrary SQL via the newly introduced /v1/sql-runner endpoint. This issue has been resolved in version 0.31.24. Users are advised to either upgrade ...
EUVD-2021-2445
Malware in sbrugna...
EUVD-2021-19560
Malware in sbrugna...
EUVD-2018-0614
Malware in sbrugna...
EUVD-2023-1189
Malicious code in bioql PyPI...
EUVD-2025-5094
Malicious code in bioql PyPI...
EUVD-2022-28541
Malicious code in bioql PyPI...
EUVD-2025-10828
Malicious code in bioql PyPI...
EUVD-2024-1941
Malicious code in bioql PyPI...
EUVD-2025-0043
Malicious code in bioql PyPI...
EUVD-2023-1718
Malicious code in bioql PyPI...