Lucene search
K

15 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/07 4:30 a.m.5 views

CVE-2026-25842

Not used...

5.3AI score
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-25842

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00826EPSS
Exploits0References1
Circl
Circl
added 2025/08/18 9:2 p.m.19 views

CVE-2022-25842

creationtimestamp| type| source ---|---|--- 2025-08-18 21:02:45+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lwpcbov7mn2v...

9.8CVSS7.3AI score0.03556EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:46 a.m.8 views

CVE-2024-25842

An issue was discovered in Presta World "Account Manager - Sales Representative & Dealers - CRM" prestasalesmanager module for PrestaShop before version 9.0, allows remote attackers to escalate privilege and obtain sensitive information via the uploadLogo and postProcess methods...

7.5CVSS7AI score0.0055EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 1:15 a.m.7 views

CVE-2025-3480

MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of MedDream WEB DICOM Viewer. Authentication is not required to exploit this...

6.5CVSS0.00136EPSS
Exploits0References1
Circl
Circl
added 2024/03/03 10:26 a.m.10 views

CVE-2024-25842

creationtimestamp| type| source ---|---|--- 2024-03-03 10:26:23+00:00| seen| https://t.me/ctinow/198655 2024-03-03 10:31:05+00:00| seen| https://t.me/ctinow/198659...

7.5CVSS4.8AI score0.0055EPSS
Exploits0References2
CVE
CVE
added 2024/03/03 12:0 a.m.58 views

CVE-2024-25842

CVE-2024-25842 affects the PrestaWorld Prestasalesmanager module used with PrestaShop up to version 9.0. The issue allows remote attackers to escalate privileges and access sensitive information via the uploadLogo() and postProcess() methods in the module. Concrete details across multiple sources...

7.5CVSS6.8AI score0.0055EPSS
Exploits0References1Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/03 12:0 a.m.8 views

com.alibaba.oneagent:one-java-agent (=0.0.1) potentially affected by CVE-2022-25842 via com.alibaba.oneagent:one-java-agent-plugin (=0.0.1)

com.alibaba.oneagent:one-java-agent-plugin MAVEN version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on com.alibaba.oneagent:one-java-agent-plugin and may be impacted: - com.alibaba.oneagent:one-java-agent =0.0.1 Source cves: CVE-2022-25842...

9.8CVSS7.2AI score0.03556EPSS
Exploits1
CVE
CVE
added 2022/05/01 3:25 p.m.103 views

CVE-2022-25842

CVE-2022-25842 affects all versions of com.alibaba.oneagent:one-java-agent-plugin. It is vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip): a crafted archive with directory traversal filenames (e.g., ../../evil.exe) can cause sensitive files to be overwritten, enabling remote c...

9.8CVSS8.3AI score0.03556EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/05/01 3:25 p.m.24 views

CVE-2022-25842 Arbitrary File Write via Archive Extraction (Zip Slip)

All versions of package com.alibaba.oneagent:one-java-agent-plugin are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip using a specially crafted archive that holds directory traversal filenames e.g. ../../evil.exe. The attacker can overwrite executable files and either invoke...

6.9CVSS9.8AI score0.03556EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/05/01 3:20 p.m.4 views

CVE-2022-25842

All versions of package com.alibaba.oneagent:one-java-agent-plugin are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip using a specially crafted archive that holds directory traversal filenames e.g. ../../evil.exe. The attacker can overwrite executable files and either invoke...

9.8CVSS7.5AI score0.03556EPSS
Exploits1References5
vulnersOsv
vulnersOsv
added 2022/02/21 3:33 p.m.4 views

com.alibaba.oneagent:one-java-agent (=0.0.1) potentially affected by CVE-2022-25842 via com.alibaba.oneagent:one-java-agent-plugin (=0.0.1)

com.alibaba.oneagent:one-java-agent-plugin MAVEN version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on com.alibaba.oneagent:one-java-agent-plugin and may be impacted: - com.alibaba.oneagent:one-java-agent =0.0.1 Source cves: CVE-2022-25842...

9.8CVSS7.2AI score0.03556EPSS
Exploits1
CVE
CVE
added 2020/12/31 7:45 a.m.42 views

CVE-2020-25842

The CVE-2020-25842 entry concerns NHIServiSignAdapter, where the encryption function fails to verify the file path input by users, enabling a remote attacker to access arbitrary files without privileges. Root cause: improper input/path validation. Impact: potential arbitrary file disclosure. The ...

7.5CVSS7.6AI score0.00502EPSS
Exploits0References1Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.12 views

CVE-2026-25842

This CVE entry is rejected/not used and does not represent an active vulnerability.

5.3AI score
Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.32 views

CVE-2026-25842

...

Exploits0
Rows per page
Query Builder