417504 matches found
EUVD-2025-19743
Malicious code in bioql PyPI...
EUVD-2023-2620
Malicious code in bioql PyPI...
EUVD-2023-54265
Malicious code in bioql PyPI...
EUVD-2023-43786
Malicious code in bioql PyPI...
EUVD-2025-10887
Malicious code in bioql PyPI...
EUVD-2025-18420
Malicious code in bioql PyPI...
EUVD-2022-4918
Malicious code in bioql PyPI...
EUVD-2023-0642
Malicious code in bioql PyPI...
EUVD-2022-51842
Malicious code in bioql PyPI...
EUVD-2022-1107
Malicious code in bioql PyPI...
EUVD-2025-16777
Malicious code in bioql PyPI...
EUVD-2024-27857
Malicious code in bioql PyPI...
EUVD-2026-39219
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrackirc: fix possible out-of-bounds read When parsing fails after we've matched the command string we should bail out instead of trying to match a different command. This helper should be deprecated, given...
EUVD-2026-35736
Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...
EUVD-2026-35726
Windows Kerberos Denial of Service Vulnerability...
EUVD-2026-31211
The Avada Fusion Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple shortcodes in all versions up to, and including, 3.15.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level...
EUVD-2026-30761
A vulnerability was detected in opensourcepos Open Source Point of Sale up to 3.4.2. This issue affects the function getPicThumb of the file app/Controllers/Items.php. The manipulation of the argument picfilename results in path traversal. The attack may be launched remotely. The patch is...
EUVD-2026-30184
OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, an authenticated Remote Code Execution RCE vulnerability in the OPNsense core allows a user with user-management privileges to execute arbitrary system commands as root. An attacker can bypass input validation by formatti...
EUVD-2026-29456
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Blind SQL Injection.This issue affects Xpro Elementor Addons: from n/a through = 1.5.1...
EUVD-2026-29389
The AI Chatbot & Workflow Automation by AIWU plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.4.17 due to insufficient escaping on user supplied parameters and lack of sufficient preparation on the existing SQL query in the getListForTbl function. This makes...
EUVD-2026-29011
A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. T...
EUVD-2026-28764
In the Linux kernel, the following vulnerability has been resolved: serial: caif: hold tty-link reference in ldiscopen and serrelease A reproducer triggers a KASAN slab-use-after-free in ptywriteroom when caifserial's TX path calls ttywriteroom. The faulting access is on tty-link-port. Hold an...
EUVD-2026-28649
PHPUnit is a testing framework for PHP. In versions 12.5.21 and 13.1.5, PHPUnit forwards PHP INI settings to child processes used for isolated/PHPT test execution as -d name=value command-line arguments without neutralizing INI metacharacters. Because PHP's INI parser interprets " as a string...
EUVD-2025-209737
RayVentory Scan Engine through 12.6 Update 8 allows attackers to gain privileges if they control the value of the PATH environment variable. NOTE: this is disputed because ability of an attacker to control the environment is a site-specific misconfiguration...
EUVD-2026-28421
The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...
EUVD-2026-26928
A flaw has been found in CodeAstro Online Classroom 1.0. The affected element is an unknown function of the file /OnlineClassroom/facultylogin. Executing a manipulation of the argument fid can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be us...
EUVD-2026-19757
NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a server crash by sending a malformed request to the server. A successful exploit of this vulnerability might lead to denial of service...
EUVD-2026-17875
MetInfo CMS versions 7.9, 8.0, and 8.1 contain an unauthenticated PHP code injection vulnerability that allows remote attackers to execute arbitrary code by sending crafted requests with malicious PHP code. Attackers can exploit insufficient input neutralization in the execution path to achieve...
EUVD-2026-10500
An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges...
EUVD-2021-0108
Malware in sbrugna...
EUVD-2021-2105
Malware in sbrugna...
EUVD-2021-12559
Malware in sbrugna...
EUVD-2021-16590
Malware in sbrugna...
EUVD-2023-43783
Malicious code in bioql PyPI...
EUVD-2023-33891
Malicious code in bioql PyPI...
EUVD-2024-27167
Malicious code in bioql PyPI...
EUVD-2023-34410
Malicious code in bioql PyPI...
EUVD-2025-32031
Malicious code in bioql PyPI...
EUVD-2025-6218
Malicious code in bioql PyPI...
EUVD-2025-24647
Malicious code in bioql PyPI...
EUVD-2025-24180
Malicious code in bioql PyPI...
EUVD-2025-30242
Malicious code in bioql PyPI...
EUVD-2025-29497
Malicious code in bioql PyPI...
EUVD-2024-1212
Malicious code in bioql PyPI...
EUVD-2023-1240
Malicious code in bioql PyPI...
EUVD-2022-15824
Malicious code in bioql PyPI...
EUVD-2025-20841
Malicious code in bioql PyPI...
EUVD-2021-27595
Malicious code in bioql PyPI...
EUVD-2025-27086
Malicious code in bioql PyPI...
EUVD-2024-27118
Malicious code in bioql PyPI...