417878 matches found
EUVD-2026-28449
Improper neutralization of special elements used in a command 'command injection' in Copilot Chat Microsoft Edge allows an unauthorized attacker to disclose information over a network...
EUVD-2026-28451
Improper input validation in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network...
EUVD-2026-28419
When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash...
EUVD-2026-28422
The "go bug" command writes to two files with predictable names in the system temporary directory for example, "/tmp". An attacker with access to the temporary directory can create a symlink in one of these names, causing "go bug" to overwrite the target of the symlink...
EUVD-2026-28400
The MQTT broker embedded in Yarbo firmware v2.3.9 is configured to allow anonymous connections with no topic-level read or write ACLs. Any host on the same network can subscribe to sensitive telemetry topics or publish control messages directly to the robot without authentication or authorization...
EUVD-2026-28300
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...
EUVD-2026-25871
authd: Primary group ID is incorrectly set to value of UID...
EUVD-2026-27133
Nginx-UI: Authenticated settings disclosure exposes node.secret and enables trusted-node authentication abuse, backup exfiltration, and restore-based nginx-ui state rollback...
EUVD-2026-27295
OpenClaw versions 2026.4.10 before 2026.4.14 contain a missing authorization vulnerability in the Microsoft Teams SSO invoke handler that fails to apply sender allowlist checks. Attackers can bypass sender authorization by sending SSO invoke requests that are processed without proper validation,...
EUVD-2026-27271
OpenClaw versions 2026.2.23 before 2026.4.12 contain a weakened exec approval binding vulnerability in busybox and toybox applet execution that allows attackers to obscure which applet would actually run. Attackers can exploit opaque multi-call binaries to bypass exec approval mechanisms and weak...
EUVD-2026-26929
A vulnerability has been found in CodeAstro Online Classroom 1.0. The impacted element is an unknown function of the file /OnlineClassroom/studentdetails. The manipulation of the argument deleteid leads to sql injection. The attack is possible to be carried out remotely. The exploit has been...
EUVD-2026-26843
A flaw has been found in JD Cloud JDCOS 4.5.1.r4518. This vulnerability affects the function setiptvinfo of the file /jdcap of the component Service Interface. Executing a manipulation of the argument vid can lead to command injection. It is possible to launch the attack remotely. The exploit has...
EUVD-2026-26744
The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping of Calculation Product field product names when rendered inside Repeater fields. The validat...
EUVD-2026-25615
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starletteclient.OAuth. This vulnerability is fixed in 1.6.11...
EUVD-2026-24352
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Fluid Core. Supported versions that are affected are 8.61-8.62. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
EUVD-2026-23032
A flaw was found in the System Security Services Daemon SSSD. The pampasskeychildreaddata function within the PAM passkey responder fails to properly handle raw bytes received from a pipe. Because the data is treated as a NUL-terminated C string without explicit termination, it results in an...
EUVD-2026-1717
fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluidsynthmonopoly.c, that can be triggered when loading an invalid midi file...
EUVD-2025-199737
Zenitel TCIV-3+ is vulnerable to an out-of-bounds write vulnerability, which could allow a remote attacker to crash the device...
EUVD-2025-198374
IBM webMethods Integration 10.11 through 10.11CoreFix22, 10.15 through 10.15CoreFix22, and 11.1 through 11.1CoreFix6 IBM webMethods Integration allow an authenticated user to execute arbitrary code on the system, caused by the deserialization of untrusted object graphs data...
EUVD-2025-34743
There is an incomplete cleanup vulnerability in Qt Network's Schannel support on Windows which can lead to a Denial of Service over a long period.This issue affects Qt from 5.15.0 through 6.8.3, from 6.9.0 before 6.9.2...
EUVD-2025-34251
Argo Workflow has a Zipslip Vulnerability...
EUVD-2025-31856
A security vulnerability has been detected in Tenda CH22 up to 1.0.0.1. This issue affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP Request Handler. The manipulation of the argument mitssidindex leads to stack-based buffer overflow. The attack may be...
EUVD-2007-3197
Malware in sbrugna...
EUVD-2021-1436
Malware in sbrugna...
EUVD-2008-2625
Malware in sbrugna...
EUVD-2014-0085
Malware in sbrugna...
EUVD-2021-11352
Malware in sbrugna...
EUVD-2009-0088
Malware in sbrugna...
EUVD-2021-0070
Malware in sbrugna...
EUVD-2020-25223
Malware in sbrugna...
EUVD-2021-13796
Malware in sbrugna...
EUVD-2006-6714
Malware in sbrugna...
EUVD-2020-22885
Malware in sbrugna...
EUVD-2021-1633
Malware in sbrugna...
EUVD-2019-16400
Malware in sbrugna...
EUVD-2019-16399
Malware in sbrugna...
EUVD-2021-22170
Malware in sbrugna...
EUVD-2021-15738
Malware in sbrugna...
EUVD-2021-0296
Malware in sbrugna...
EUVD-2010-1974
Malware in sbrugna...
EUVD-2020-0253
Malware in sbrugna...
EUVD-2009-2723
Malware in sbrugna...
EUVD-2021-2335
Malware in sbrugna...
EUVD-2010-2904
Malware in sbrugna...
EUVD-2004-2221
Malware in sbrugna...
EUVD-2021-1665
Malware in sbrugna...
EUVD-2020-4777
Malware in sbrugna...
EUVD-2019-17185
Malware in sbrugna...
EUVD-2012-5952
Malware in sbrugna...
EUVD-2021-18760
Malware in sbrugna...