417642 matches found
EUVD-2026-30181
Improper sanitization of the status query parameter of the /unprotected/novaerror endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response...
EUVD-2026-29850
Heym before 0.0.21 contains a path traversal vulnerability in the file upload endpoint that allows authenticated users to write attacker-controlled files to arbitrary locations by supplying a crafted filename with traversal sequences. Attackers can exploit the unvalidated filename parameter in th...
EUVD-2026-29157
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Echo. This vulnerability is associated with program files includes/Api/ApiEchoNotifications.Php. This issue affects Echo: from before 1.43.7, 1.44.4, 1.45.2...
EUVD-2026-29018
A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit is publicly available and might be used. The vendor was...
EUVD-2026-29019
A security flaw has been discovered in Tenda AC6 15.03.06.49multiTDE01. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet of the component httpd. Performing a manipulation of the argument mac/ssid results in os command injection. It is possible to initiate the attack...
EUVD-2026-28948
A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...
EUVD-2026-27810
In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix SError of kernel panic when closed SError of kernel panic rarely happened while testing fluster. The root cause was to enter suspend mode because timeout of autosuspend delay happened. 48.834439...
EUVD-2026-27777
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We used to use the cifstcpseslock to protect a lot of objects that are not just the server, ses or tcon lists. We later introduced srvlock, seslock and tclock to protect fields within the...
EUVD-2026-26944
An escalation of privilege bug in various modules in Apache HTTP 2.4.66 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. Users are recommended to upgrade to version 2.4.67, which fixes this issue...
EUVD-2026-23116
Barracuda RMM versions prior to 2025.2.2 contain a privilege escalation vulnerability that allows local attackers to gain SYSTEM-level privileges by exploiting overly permissive filesystem ACLs on the C:\Windows\Automation directory. Attackers can modify existing automation content or place...
EUVD-2026-22993
JavaScript is vulnerable to prototype pollution in Mafintosh's protocol-buffers-schema Version 3.6.0, where an attacker may alter the application logic, bypass security checks, cause a DoS or achieve remote code execution...
EUVD-2026-10501
An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges...
EUVD-2026-5616
Claude Code is an agentic coding tool. Prior to version 2.1.2, Claude Code's bubblewrap sandboxing mechanism failed to properly protect the .claude/settings.json configuration file when it did not exist at startup. While the parent directory was mounted as writable and .claude/settings.local.json...
EUVD-2025-199833
Mattermost versions 11.0.x = 11.0.2, 10.12.x = 10.12.1, 10.11.x = 10.11.4, 10.5.x = 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email...
EUVD-2021-10829
Malware in sbrugna...
EUVD-2021-25130
Malware in sbrugna...
EUVD-2021-0971
Malware in sbrugna...
EUVD-2010-0166
Malware in sbrugna...
EUVD-2021-1067
Malware in sbrugna...
EUVD-2019-0720
Malware in sbrugna...
EUVD-2021-15143
Malware in sbrugna...
EUVD-2021-27339
Malware in sbrugna...
EUVD-2006-1890
Malware in sbrugna...
EUVD-2020-28694
Malware in sbrugna...
EUVD-2021-0621
Malware in sbrugna...
EUVD-2024-16931
Malicious code in bioql PyPI...
EUVD-2023-58182
Malicious code in bioql PyPI...
EUVD-2025-22853
Malicious code in bioql PyPI...
EUVD-2024-48483
Malicious code in bioql PyPI...
EUVD-2025-21527
Malicious code in bioql PyPI...
EUVD-2025-21911
Malicious code in bioql PyPI...
EUVD-2023-44605
Malicious code in bioql PyPI...
EUVD-2024-23543
Malicious code in bioql PyPI...
EUVD-2023-44308
Malicious code in bioql PyPI...
EUVD-2025-31305
Malicious code in bioql PyPI...
EUVD-2022-0962
Malicious code in bioql PyPI...
EUVD-2023-33895
Malicious code in bioql PyPI...
EUVD-2021-30806
Malicious code in bioql PyPI...
EUVD-2023-54736
Malicious code in bioql PyPI...
EUVD-2025-23157
Malicious code in bioql PyPI...
EUVD-2024-30310
Malicious code in bioql PyPI...
EUVD-2023-1681
Malicious code in bioql PyPI...
EUVD-2022-43204
Malicious code in bioql PyPI...
EUVD-2023-50564
Malicious code in bioql PyPI...
EUVD-2024-30434
Malicious code in bioql PyPI...
EUVD-2025-17026
Malicious code in bioql PyPI...
EUVD-2022-6481
Malicious code in bioql PyPI...
EUVD-2022-35844
Malicious code in bioql PyPI...
EUVD-2022-3811
Malicious code in bioql PyPI...
EUVD-2025-18638
Malicious code in bioql PyPI...