417607 matches found
EUVD-2026-26743
The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping on Hidden Product field values when used inside Repeater fields, where repeater subfields bypass state...
EUVD-2026-3933
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Indoor Plants indoor-plants allows PHP Local File Inclusion.This issue affects Indoor Plants: from n/a through = 1.2.7...
EUVD-2021-21279
Malware in sbrugna...
EUVD-2021-13851
Malware in sbrugna...
EUVD-2021-18714
Malware in sbrugna...
EUVD-2021-16051
Malware in sbrugna...
EUVD-2021-2574
Malware in sbrugna...
EUVD-2023-54361
Malicious code in bioql PyPI...
EUVD-2025-9086
Malicious code in bioql PyPI...
EUVD-2023-12442
Malicious code in bioql PyPI...
EUVD-2022-41110
Malicious code in bioql PyPI...
EUVD-2022-35061
Malicious code in bioql PyPI...
EUVD-2025-9242
Malicious code in bioql PyPI...
EUVD-2023-12509
Malicious code in bioql PyPI...
EUVD-2025-0021
Malicious code in bioql PyPI...
EUVD-2025-29700
Malicious code in bioql PyPI...
EUVD-2024-29282
Malicious code in bioql PyPI...
EUVD-2026-35663
Integer underflow wrap or wraparound in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
EUVD-2026-30674
qs has a remotely triggerable DoS: qs.stringify crashes with TypeError on null/undefined entries in comma-format arrays when encodeValuesOnly is set...
EUVD-2026-30629
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, GET /api/v1/retrieval/ returns live RAG pipeline configuration to any unauthenticated HTTP client. No Authorization header, cookie, or API key is required. Every adjacent endpoint on...
EUVD-2026-30349
Mongoose is a MongoDB object modeling tool designed to work in an asynchronous environment. Prior to 6.13.9, 7.8.9, 8.22.1, and 9.1.6, a vulnerability allows bypassing Mongoose’s sanitizeFilter query sanitization mechanism via the $nor operator. When sanitizeFilter is enabled, Mongoose wraps quer...
EUVD-2026-29637
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...
EUVD-2026-26220
A missing permission check in Jenkins Script Security Plugin 1399.ve6a66547f6e1 and earlier allows attackers with Overall/Read permission to enumerate pending and approved Script Security classpaths...
EUVD-2026-23970
LMDeploy has Server-Side Request Forgery SSRF via Vision-Language Image Loading...
EUVD-2026-9082
Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vulnerable to an absolute path traversal issue that enables unauthenticated attackers to read arbitrary files from the file system. Python 3.13+ change...
EUVD-2025-205780
Picklescan is vulnerable to RCE via missing detection when calling built-in python operator.attrgetter...
EUVD-2025-34561
The Flex QR Code Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in thesaveqrcodetodb function in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected...
EUVD-2021-10081
Malware in sbrugna...
EUVD-2019-10560
Malware in sbrugna...
EUVD-2021-20812
Malware in sbrugna...
EUVD-2024-34521
Malicious code in bioql PyPI...
EUVD-2022-26179
Malicious code in bioql PyPI...
EUVD-2022-42766
Malicious code in bioql PyPI...
EUVD-2023-23542
Malicious code in bioql PyPI...
EUVD-2023-58939
Malicious code in bioql PyPI...
EUVD-2025-24827
Malicious code in bioql PyPI...
EUVD-2023-34498
Malicious code in bioql PyPI...
EUVD-2023-24069
Malicious code in bioql PyPI...
EUVD-2025-27990
Malicious code in bioql PyPI...
EUVD-2025-17774
Malicious code in bioql PyPI...
EUVD-2024-54366
Malicious code in bioql PyPI...
EUVD-2025-13640
Malicious code in bioql PyPI...
EUVD-2025-29456
Malicious code in bioql PyPI...
EUVD-2022-45013
Malicious code in bioql PyPI...
EUVD-2023-35115
Malicious code in bioql PyPI...
EUVD-2025-26961
Malicious code in bioql PyPI...
EUVD-2025-29821
Malicious code in bioql PyPI...
EUVD-2025-31641
Malicious code in bioql PyPI...
EUVD-2025-30405
Malicious code in bioql PyPI...
EUVD-2022-35082
Malicious code in bioql PyPI...