Lucene search
K

14 matches found

EUVD
EUVD
added 2025/11/10 5:21 p.m.0 views

EUVD-2025-48230

Malicious code in dangerousladybugz3n npm...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 4: capnproto (TSSA-2025:0183)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0183 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS9.1AI score0.01888EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:16 a.m.11 views

CVE-2024-48230

funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php...

9.8CVSS8AI score0.00472EPSS
Exploits1References1
Circl
Circl
added 2024/10/25 11:46 p.m.6 views

CVE-2024-48230

creationtimestamp| type| source ---|---|--- 2024-10-25 23:46:34+00:00| seen| https://t.me/cvedetector/8985...

9.8CVSS4.8AI score0.00472EPSS
Exploits1References1
NVD
NVD
added 2024/10/25 9:15 p.m.23 views

CVE-2024-48230

funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php...

9.8CVSS0.00472EPSS
Exploits1References1
CVE
CVE
added 2024/10/25 12:0 a.m.50 views

CVE-2024-48230

CVE-2024-48230 affects funadmin 5.0.2 in the index method of backend/controller/auth/Auth.php, where the parentField parameter enables SQL Injection. Multiple sources (NVD, Red Hat, Veracode, OSV, GHSA/GitHub advisories, CVE lists) confirm the vulnerability and its impact on data confidentiality,...

9.8CVSS8.3AI score0.00472EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/10/25 12:0 a.m.19 views

CVE-2024-48230

funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php...

0.00472EPSS
Exploits1References1
NVD
NVD
added 2023/11/21 9:15 p.m.15 views

CVE-2023-48230

Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused by a remote peer. The underrun always writes a constant value that is not attacker-controlled,...

9.8CVSS0.01888EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/11/21 8:53 p.m.21 views

CVE-2023-48230 Cap'n Proto WebSocket message can cause crash

Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused by a remote peer. The underrun always writes a constant value that is not attacker-controlled,...

5.9CVSS9.7AI score0.01888EPSS
Exploits1References3
CVE
CVE
added 2023/11/21 8:53 p.m.61 views

CVE-2023-48230

Cap'n Proto 1.0/1.0.1 with KJ HTTP and WebSocket compression enabled is vulnerable to a remote-denial-of-service: a remote peer can trigger a buffer underrun on a heap-allocated buffer, which writes a constant 4‑byte string { 0x00, 0x00, 0xFF, 0xFF } and can crash the process. The issue is tied t...

9.8CVSS7.8AI score0.01888EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/11/21 8:53 p.m.19 views

CVE-2023-48230 Cap'n Proto WebSocket message can cause crash

Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused by a remote peer. The underrun always writes a constant value that is not attacker-controlled,...

5.9CVSS9.3AI score0.01888EPSS
Exploits1References5
Circl
Circl
added 2023/02/27 8:31 p.m.6 views

CVE-2022-48230

creationtimestamp| type| source ---|---|--- 2023-02-27 20:31:57+00:00| seen| https://t.me/cibsecurity/58995...

7.5CVSS7.3AI score0.00468EPSS
Exploits0References1
CVE
CVE
added 2023/02/27 12:0 a.m.60 views

CVE-2022-48230

CVE-2022-48230 affects Huawei BiSheng-WNM FW 3.0.0.325. The issue is a misinterpretation of input vulnerability that could be exploited remotely to cause a denial of service. The CVE entry has a High impact (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) with a network attack vector and no confidentiality/...

7.5CVSS7.3AI score0.00468EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/27 12:0 a.m.9 views

CVE-2022-48230

There is a misinterpretation of input vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to DoS...

7.4AI score0.00468EPSS
Exploits0References1
Rows per page
Query Builder