452 matches found
EUVD-2018-2686
Malware in sbrugna...
EUVD-2023-42525
Malicious code in bioql PyPI...
EUVD-2024-36948
Malicious code in bioql PyPI...
EUVD-2025-14337
Malicious code in bioql PyPI...
EUVD-2022-44462
Malicious code in bioql PyPI...
EUVD-2022-5332
Malicious code in bioql PyPI...
EUVD-2022-36933
Malicious code in bioql PyPI...
EUVD-2024-34615
Malicious code in bioql PyPI...
EUVD-2022-50314
Malicious code in bioql PyPI...
EUVD-2022-4967
Malicious code in bioql PyPI...
EUVD-2025-7916
Malicious code in bioql PyPI...
EUVD-2023-27867
Malicious code in bioql PyPI...
EUVD-2025-21742
Malicious code in bioql PyPI...
CVE-2025-6170 Libxml2: stack buffer overflow in xmllint interactive shell command handling
A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow attackers to run harmful code in rare...
ROS-20250616-04
Vulnerability of functions xmlSchemaIDCFillNodeTables, xmlSchemaBubbleIDCNodeTables xmlschemas.c of library Libxml2 is related to the possibility of memory usage after release. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by sending a specially crafted XML f...
CVE-2024-4207
A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 5.1 prior 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2. When viewing an XML file in a repository in raw mode, it can be made to render as HTML if viewed under...
CVE-2023-6194
In Eclipse Memory Analyzer versions 0.7 to 1.14.0, report definition XML files are not filtered to prohibit document type definition DTD references to external entities. This means that if a user chooses to use a malicious report definition XML file containing an external entity reference to...
CVE-2023-38750
In Zimbra Collaboration ZCS 8 before 8.8.15 Patch 41, 9 before 9.0.0 Patch 34, and 10 before 10.0.2, internal JSP and XML files can be exposed...
CVE-2021-27890
SQL Injection vulnerablity in MyBB before 1.8.26 via theme properties included in theme XML files...
CVE-2019-19988
An issue was discovered in Selesta Visual Access Manager VAM 4.15.0 through 4.29. A user with valid credentials is able to create and write XML files on the filesystem via /common/vameditXml.php in the web interface. The vulnerable PHP page checks none of these: the parameter that identifies the...