Lucene search
K

18 matches found

Circl
Circl
added 2026/02/20 4:0 a.m.6 views

CVE-2019-25350

creationtimestamp| type| source ---|---|--- 2026-02-20 04:00:18+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfb7usy3f32i...

7.5CVSS5.1AI score0.00247EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:25 p.m.9 views

CVE-2021-25350

Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user information via log...

3.9CVSS6.6AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 8:54 p.m.20 views

CVE-2025-1520

PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.1CVSS8.4AI score0.00432EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/04/23 4:45 p.m.6 views

CVE-2025-1520 PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability

PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.1CVSS8.4AI score0.00432EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/06 2:6 a.m.12 views

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

7.8CVSS7.2AI score0.01219EPSS
Exploits1References1
Circl
Circl
added 2024/02/28 11:27 p.m.5 views

CVE-2024-25350

creationtimestamp| type| source ---|---|--- 2024-02-28 23:27:01+00:00| seen| https://t.me/ctinow/195970 2025-04-22 16:03:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12882...

9.8CVSS4.8AI score0.00628EPSS
Exploits1References2
NVD
NVD
added 2024/02/28 10:15 p.m.13 views

CVE-2024-25350

SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters...

9.8CVSS7.8AI score0.00628EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/02/28 12:0 a.m.8 views

CVE-2024-25350

SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters...

8.2AI score0.00628EPSS
Exploits1References1
CVE
CVE
added 2024/02/28 12:0 a.m.93 views

CVE-2024-25350

CVE-2024-25350 affects PHPGurukul Zoo Management System 1.0, with a SQL Injection vulnerability in /zms/admin/edit-ticket.php exploitable via the tickettype and tprice parameters. The primary advisory cites a CVSS v3.1 base score of 9.8 (CRITICAL) with NETWORK attackVector, LOW attackComplexity, ...

9.8CVSS8.1AI score0.00628EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/02/28 12:0 a.m.16 views

CVE-2024-25350

SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters...

8.1AI score0.00628EPSS
Exploits1References1
CVE
CVE
added 2023/03/24 12:0 a.m.56 views

CVE-2023-25350

CVE-2023-25350 affects Faveo Helpdesk versions 1.0–1.11.1. The vulnerability is a SQL injection in the login flow caused by input data from the frontend to the backend being controllable, allowing injection through the login box. The available documents consistently describe the issue and its imp...

8.8CVSS9AI score0.00805EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/24 12:0 a.m.6 views

CVE-2023-25350

Faveo Helpdesk 1.0-1.11.1 is vulnerable to SQL Injection. When the user logs in through the login box, he has no judgment on the validity of the user's input data. The parameters passed from the front end to the back end are controllable, which will lead to SQL injection...

9.1AI score0.00805EPSS
Exploits1References2
Circl
Circl
added 2023/01/27 12:33 a.m.4 views

CVE-2022-25350

creationtimestamp| type| source ---|---|--- 2023-01-27 00:33:50+00:00| seen| https://t.me/cibsecurity/56939 2025-04-01 15:32:29+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9915...

7.8CVSS7.5AI score0.01219EPSS
Exploits1References2
NVD
NVD
added 2023/01/26 9:15 p.m.21 views

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

7.8CVSS7.8AI score0.01219EPSS
Exploits1References2
CVE
CVE
added 2023/01/24 5:0 a.m.54 views

CVE-2022-25350

CVE-2022-25350 affects the Node.js module puppet-facter . The vulnerability is a command injection in the getFact function caused by improper input sanitization . It is a local attack with high impact on confidentiality, integrity, and availability (CVSS 3.1 base 7.8). Affected: all versions (no ...

7.8CVSS7.8AI score0.01219EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/24 5:0 a.m.5 views

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

7.4CVSS7.6AI score0.01219EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/01/24 5:0 a.m.36 views

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

7.4CVSS8.1AI score0.01219EPSS
Exploits1References2
CVE
CVE
added 2021/03/25 4:10 p.m.44 views

CVE-2021-25350

CVE-2021-25350 concerns an Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3. The issue allows physically proximate attackers to access user information via logs. Affected component is Samsung Account; impact reported as partial confidentiality loss with no integrity...

3.9CVSS4.2AI score0.00239EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder