EUVD-2018-1829

Malware in sbrugna...

EUVD-2018-8585

Malware in sbrugna...

EUVD-2017-11956

Malware in sbrugna...

EUVD-2011-2142

Malware in sbrugna...

EUVD-2018-15667

Malware in sbrugna...

EUVD-2019-6991

Malware in sbrugna...

EUVD-2025-7216

Malicious code in bioql PyPI...

EUVD-2022-3465

Malicious code in bioql PyPI...

EUVD-2022-45382

Malicious code in bioql PyPI...

EUVD-2025-0146

Malicious code in bioql PyPI...

EUVD-2021-9484

Malicious code in bioql PyPI...

CVE-2019-16174

An XML injection vulnerability was found in Limesurvey before 3.17.14 that allows remote attackers to import specially crafted XML files and execute code or compromise data integrity...

CVE-2025-32138

CVE-2025-32138 (Easy Google Maps) is an authenticated XML External Entity (XXE) injection in the Easy Google Maps plugin. Affected versions include

CVE-2025-32138 WordPress Easy Google Maps plugin <= 1.11.18 - XML External Entity vulnerability

Improper Restriction of XML External Entity Reference vulnerability in supsystic Easy Google Maps google-maps-easy allows XML Injection.This issue affects Easy Google Maps: from n/a through = 1.11.18...

CVE-2025-0162 IBM Aspera Shares XML external entity injection

IBM Aspera Shares 1.9.9 through 1.10.0 PL7 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote authenticated attacker could exploit this vulnerability to expose sensitive information or consume memory resources...

CVE-2024-49781

IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources...

CVE-2024-51462

IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow a remote attacker to inject XML data into parameter values due to improper input validation of assumed immutable data...

Magento Open Source allows XML Injection

Adobe Commerce versions 2.4.6-p1 and earlier, 2.4.5-p3 and earlier and 2.4.4-p4 and earlier are affected by a XML Injection aka Blind XPath Injection vulnerability that could lead in minor arbitrary file system read. Exploitation of this issue does not require user interaction...

Magento Open Source allows XML Injection

Adobe Commerce versions 2.4.6 and earlier, 2.4.5-p2 and earlier and 2.4.4-p3 and earlier are affected by an XML Injection vulnerability. An attacker with low privileges can trigger a specially crafted script to a security feature bypass. Exploitation of this issue does not require user interactio...

GHSA-WH42-8R2W-873X Magento Open Source allows XML Injection

Adobe Commerce versions 2.4.6 and earlier, 2.4.5-p2 and earlier and 2.4.4-p3 and earlier are affected by an XML Injection vulnerability. An attacker with low privileges can trigger a specially crafted script to a security feature bypass. Exploitation of this issue does not require user interactio...