417510 matches found
EUVD-2026-30303
PyTorch Lightning is a deep learning framework to pretrain and finetune AI models. Versions 2.6.2 and 2.6.2 have introduced functionality consistent with a credential harvesting mechanism...
EUVD-2026-27867
Facebook React has a Denial of Service Vulnerability in React Server Components...
EUVD-2026-29036
A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysqlserver/mysqlserver.go of the component MySQL Server. Executing a manipulation can lead to integer coercion error. The attack can be launched remotely. The attack requires...
EUVD-2026-28572
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Set DMA segment size to avoid debug warnings When using V3D rendering with CONFIGDMAAPIDEBUG enabled, the kernel occasionally reports a segment size mismatch. This is because 'maxsegsize' is not set. The kernel defaults ...
EUVD-2025-26365
A weakness has been identified in SimStudioAI sim up to ed9b9ad83f1a7c61f4392787fb51837d34eeb0af. Affected by this issue is the function Import of the file apps/sim/app/api/files/upload/route.ts of the component HTML File Parser. Executing manipulation of the argument File can lead to unrestricte...
EUVD-2021-1358
Malware in sbrugna...
EUVD-2020-11268
Malware in sbrugna...
EUVD-2024-46736
Malicious code in bioql PyPI...
EUVD-2024-46940
Malicious code in bioql PyPI...
EUVD-2025-24957
Malicious code in bioql PyPI...
EUVD-2026-29912
Bytello Share Windows Edition installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...
EUVD-2026-29050
A vulnerability was determined in Open5GS up to 2.7.7. This affects the function gsmhandlepdusessionmodificationqosflowdescriptions of the file src/smf/gsm-handler.c of the component SMF. Executing a manipulation of the argument n1SmMsg can lead to denial of service. The attack may be launched...
EUVD-2026-27185
The Royal Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'status' parameter in the wprupdateformactionmeta AJAX action in all versions up to, and including, 1.7.1056. This is due to insufficient input sanitization and output escaping, combined with a...
EUVD-2026-26784
The Salon Booking System – Free Version plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 10.30.25. This is due to the public booking flow accepting attacker-controlled file-field values and later using those stored values as trusted paths for email...
EUVD-2023-33852
Malicious code in bioql PyPI...
EUVD-2022-29251
Malicious code in bioql PyPI...
EUVD-2023-29021
Malicious code in bioql PyPI...
EUVD-2024-49851
Malicious code in bioql PyPI...
EUVD-2022-4488
Malicious code in bioql PyPI...
EUVD-2026-30287
Buffer over-read in PostgreSQL function pgrestoreattributestats accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor versions before PostgreSQL...
EUVD-2026-30202
OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, unsanitized user input is passed to the DHCP configuration of the configured interface, which is processed by a shell script, allowing remote code execution as root on the underlying operating system. This vulnerability i...
EUVD-2010-4603
Malware in sbrugna...
EUVD-2021-1411
Malware in sbrugna...
EUVD-2020-5521
Malware in sbrugna...
EUVD-2025-22567
Malicious code in bioql PyPI...
EUVD-2024-0260
Malicious code in bioql PyPI...
EUVD-2023-54478
Malicious code in bioql PyPI...
EUVD-2022-41048
Malicious code in bioql PyPI...
EUVD-2024-27363
Malicious code in bioql PyPI...
EUVD-2023-12615
Malicious code in bioql PyPI...
EUVD-2025-16578
Malicious code in bioql PyPI...
EUVD-2023-45841
Malicious code in bioql PyPI...
EUVD-2024-51984
Malicious code in bioql PyPI...
EUVD-2025-14881
Malicious code in bioql PyPI...
EUVD-2026-35673
Time-of-check time-of-use TOCTOU race condition in Program Compatibility Assistant Service allows an authorized attacker to elevate privileges locally...
EUVD-2026-30155
The HCL BigFix SCM Reporting site contains an outdated and unsupported version of the jQuery 1.x library. Since jQuery 1.x has reached end-of-life and no longer receives security updates, it may expose the application to publicly known security weaknesses and increase the risk of client-side...
EUVD-2026-29628
Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally...
EUVD-2026-29582
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
EUVD-2026-29399
The Smart Appointment & Booking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check and a nonce validation logic flaw in the saabcancelbooking function in all versions up to, and including, 1.0.8. The nonce check uses && AND instead of || OR,...
EUVD-2021-34800
Evolution CMS 3.1.6 contains a remote code execution vulnerability that allows authenticated users with module creation permissions to execute arbitrary system commands by injecting PHP code into module parameters. Attackers can send POST requests to /manager/index.php with malicious PHP code in...
EUVD-2026-28427
The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL 0...
EUVD-2026-28357
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in misp allows Stored XSS. This issue affects MISP before 2.5.37. A stored cross-site scripting vulnerability exists in the template element attribute handling logic. The application accepted...
EUVD-2026-26743
The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping on Hidden Product field values when used inside Repeater fields, where repeater subfields bypass state...
EUVD-2026-3933
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Indoor Plants indoor-plants allows PHP Local File Inclusion.This issue affects Indoor Plants: from n/a through = 1.2.7...
EUVD-2021-21279
Malware in sbrugna...
EUVD-2021-18714
Malware in sbrugna...
EUVD-2021-13851
Malware in sbrugna...
EUVD-2015-7631
Malware in sbrugna...
EUVD-2023-54361
Malicious code in bioql PyPI...
EUVD-2025-9086
Malicious code in bioql PyPI...