Lucene search
+L

166 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6221

Malware in sbrugna...

6.8CVSS6.4AI score0.02031EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-13828

Malware in sbrugna...

7.2CVSS5.7AI score0.0064EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2025-24834

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00428EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-46371

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00563EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-29171

Malicious code in bioql PyPI...

9.8CVSS8.9AI score0.00472EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/24 6:31 p.m.6 views

CVE-2025-59562

Authorization Bypass Through User-Controlled Key vulnerability in Kodezen LLC Academy LMS academy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Academy LMS: from n/a through = 3.3.4...

5.5CVSS5.9AI score0.00335EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.21 views

CVE-2025-59562

Authorization Bypass Through User-Controlled Key vulnerability in Kodezen LLC Academy LMS academy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Academy LMS: from n/a through = 3.3.4...

5.5CVSS0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 6:26 p.m.8 views

CVE-2025-59562 WordPress Academy LMS Plugin <= 3.3.4 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Academy LMS Academy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Academy LMS: from n/a through 3.3.4...

5.5CVSS6.6AI score0.00335EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:26 p.m.17 views

CVE-2025-59562 WordPress Academy LMS Plugin <= 3.3.4 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Kodezen LLC Academy LMS academy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Academy LMS: from n/a through = 3.3.4...

5.5CVSS0.00335EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.7 views

PT-2025-39040

Name of the Vulnerable Software and Affected Versions Academy LMS versions through 3.3.4 Description An authorization bypass exists due to incorrectly configured access control security levels. This allows exploitation through user-controlled keys. Recommendations Update Academy LMS to a version...

5.5CVSS6.6AI score0.00335EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.11 views

PT-2025-33287 · Espec North America · Espec North America Web Controller

Name of the Vulnerable Software and Affected Versions: ESPEC North America Web Controller versions prior to 3.3.4 Description: An invalid authentication request to /api/v4/auth/ exposes a JWT secret, potentially allowing for elevated permissions to the user interface. Recommendations: Update ESPE...

9.8CVSS6.7AI score0.00428EPSS
Exploits0References4
CVE
CVE
added 2025/08/14 12:0 a.m.39 views

CVE-2025-27845

CVE-2025-27845 affects ESPEC North America Web Controller, versions prior to 3.3.4. An invalid authentication request to /api/v4/auth/ exposes the JWT secret, permitting elevated permissions to the UI. The CVSSv3.1 base score is 9.8 (CRITICAL). Remediation: upgrade to 3.3.4 or later (per PT-2025-...

9.8CVSS7.3AI score0.00428EPSS
Exploits0References2
Debian
Debian
added 2025/08/08 9:0 p.m.72 views

[SECURITY] [DLA 4265-1] modsecurity-crs security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4265-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk August 08, 2025 https://wiki.debian.org/LTS -...

9.8CVSS8.6AI score0.01115EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.5 views

Debian dla-4265 : modsecurity-crs - security update

The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-4265 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4265-1 [email protected]...

9.8CVSS7.8AI score0.01115EPSS
Exploits1References12
OSV
OSV
added 2025/08/04 10:2 p.m.5 views

CVE-2025-8528 Exrick xboot getMenuList sensitive information in a cookie

A vulnerability classified as problematic has been found in Exrick xboot up to 3.3.4. Affected is an unknown function of the file /xboot/permission/getMenuList. The manipulation leads to cleartext storage of sensitive information in a cookie. It is possible to launch the attack remotely. The...

6.3CVSS4.3AI score0.00297EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.5 views

XBoot 安全漏洞

XBoot is a one-stop front-end and back-end separation rapid development platform for Exrick individual developers. A security vulnerability exists in XBoot 3.3.4 and earlier versions, which stems from sensitive information being stored in a cookie in clear text...

6.3CVSS4.5AI score0.00297EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 4:41 a.m.9 views

CVE-2023-48331

Cross-Site Request Forgery CSRF vulnerability in Stormhill Media MyBookTable Bookstore by Stormhill Media allows Cross Site Request Forgery.This issue affects MyBookTable Bookstore by Stormhill Media: from n/a through 3.3.4...

8.8CVSS8.5AI score0.00256EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:29 p.m.10 views

CVE-2018-25067

A vulnerability, which was classified as critical, was found in JoomGallery up to 3.3.3. This affects an unknown part of the file administrator/components/comjoomgallery/views/config/tmpl/default.php of the component Image Sort Handler. The manipulation leads to sql injection. Upgrading to versio...

7.2CVSS7.5AI score0.0064EPSS
Exploits0References1
OSV
OSV
added 2025/03/26 2:15 p.m.11 views

CVE-2025-24972 Discourse may bypass user preference when adding users to chat groups

Discourse is an open-source discussion platform. Prior to versions 3.3.4 on the stable branch and 3.4.0.beta5 on the beta branch, in specific circumstances, users could be added to group direct messages despite disabling direct messaging in their preferences. Versions 3.3.4 and 3.4.0.beta5 contai...

4.3CVSS6.5AI score0.00351EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.5 views

Discourse 安全漏洞

Discourse is an open source community discussion platform from Discourse Open Source. The platform includes features such as communities, email and chat rooms. A security vulnerability exists in Discourse stable prior to version 3.3.4 and beta prior to version 3.4.0.beta5, which stems from a...

4.3CVSS6.4AI score0.00196EPSS
Exploits0References3
Rows per page
Query Builder