16 matches found
EUVD-2025-15028
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-3818
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py...
Debian: Security Advisory (DLA-4189-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 4189-1] webpy security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4189-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk May 29, 2025 https://wiki.debian.org/LTS -...
DLA-4189-1 webpy - security update
Bulletin has no description...
Debian dla-4189 : python-webpy-doc - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4189 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4189-1 [email protected] https://www.debian.org/lts/security/...
DEBIAN-CVE-2025-3818
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-3818
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-3818
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
UBUNTU-CVE-2025-3818
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-3818 webpy web.py db.py PostgresDB._process_insert_query sql injection
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-3818 webpy web.py db.py PostgresDB._process_insert_query sql injection
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-3818
CVE-2025-3818 affects webpy (web.py) 0.70, specifically the PostgresDB._process_insert_query in web/db.py. The vulnerability arises from manipulation of the seqname argument, enabling SQL injection that can be exploited remotely. Multiple sources corroborate, including NVD/NVD-derived data and De...
CVE-2025-3818
A vulnerability, which was classified as critical, was found in webpy web.py 0.70. Affected is the function PostgresDB.processinsertquery of the file web/db.py. The manipulation of the argument seqname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
webpy 注入漏洞
webpy is a simple and powerful python web framework from webpy open source. An injection vulnerability exists in webpy version 0.70, which stems from an incorrect manipulation of the parameter seqname in the file web/db.py resulting in SQL injection...
PT-2025-17389
Name of the Vulnerable Software and Affected Versions webpy web.py version 0.70 Description A critical vulnerability was found in webpy web.py. The function PostgresDB. process insert query of the file web/db.py is affected. The manipulation of the argument seqname leads to SQL injection. It is...