Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22460

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.00158EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-10521

Malicious code in bioql PyPI...

8.5CVSS6.4AI score0.00182EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4578

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.0062EPSS
Exploits0References2
CVE
CVE
added 2025/09/09 3:0 a.m.22 views

CVE-2025-43777

CVE-2025-43777 affects Liferay Portal 7.4.0–7.4.3.132 and Liferay DXP versions 2025.Q1.0–2025.Q2.9 (and earlier 2024.Q1.1–2024.Q4.7, 2024.Q2.0–2024.Q2.13, 2024.Q3.0–2024.Q3.13). The issue: an Internal Server Error is exposed in the login response when a request uses a deleted Client Secret. Root ...

5.3CVSS6.4AI score0.00216EPSS
Exploits0References1Affected Software2
OSV
OSV
added 2025/08/29 7:15 p.m.7 views

CVE-2025-43773

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0, 2025.Q1.0 through 2025.Q1.14, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.18 and 7.4 GA through update 92 has a security vulnerability that allowing for improp...

9.1CVSS5.8AI score0.00267EPSS
Exploits0References1
NVD
NVD
added 2025/08/19 7:15 p.m.4 views

CVE-2025-43737

A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.8 and 2025.Q1.0 through 2025.Q1.15 allows a remote authenticated user to inject JavaScript code via comliferayjournalwebportletJournalPortletbackURL parameter...

5.4CVSS0.0026EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/18 12:6 p.m.8 views

CVE-2025-43733

A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7 allows a remote authenticated attacker to inject JavaScript code via the content page's name field. This malicious payload is then reflected and executed within the user...

2.3CVSS0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/31 10:4 p.m.11 views

CVE-2025-7848

A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior...

8.5CVSS8AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2025/07/29 10:15 p.m.2 views

CVE-2025-7848

A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior...

8.5CVSS6AI score0.00221EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.4 views

NI LabVIEW(National Instruments LabVIEW) 安全漏洞

NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW National Instruments LabVIEW version 2025 Q1 and earlier, which stems from improper boundary checking and could lead to information...

8.5CVSS6.3AI score0.00182EPSS
Exploits0References2
OSV
OSV
added 2025/02/12 4:15 p.m.5 views

CVE-2024-11343

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 2025.1.205, unzipping an archive can lead to arbitrary file system access...

8.8CVSS5.9AI score0.0062EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/12 12:0 a.m.9 views

PT-2025-6781 · Progress · In Progress Telerik Ui For Winforms

Name of the Vulnerable Software and Affected Versions: In Progress Telerik UI for WinForms versions prior to 2025 Q1 2025.1.211 Description: The issue is related to the improper limitation of a target path, which can lead to decompressing an archive's content into a restricted directory. This can...

9.8CVSS6.3AI score0.00374EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Progress Telerik UI 路径遍历漏洞

Progress Telerik UI is a suite of UI user interface controls for application development from Progress, Inc. A path traversal vulnerability exists in Progress Telerik UI prior to version 2025 Q1, which stems from the fact that the use of improper destination path restrictions could result in the...

9.8CVSS6.5AI score0.00374EPSS
Exploits0References1
Rows per page
Query Builder