Lucene search
K

24 matches found

NVD
NVD
added 2025/11/12 10:15 p.m.3 views

CVE-2025-64500

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Symfony's HttpFoundation component defines an object-oriented layer for the HTTP specification. Starting in version 2.0.0 and prior to version 5.4.50, 6.4.29, and 7.3.7, the Request class improperly...

7.3CVSS0.01326EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.5 views

Symfony 安全漏洞

Symfony is a PHP framework for web and console applications and a set of reusable PHP components from Symfony, Inc. A security vulnerability exists in Symfony versions prior to 5.4.50, 6.4.29, and 7.3.7, which stems from improper parsing of PATHINFO and could lead to bypassing access control rule...

7.3CVSS6.4AI score0.01326EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2024-28408

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00594EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-45668

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01261EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 9:52 a.m.12 views

CVE-2024-30488

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Katie Zotpress zotpress.This issue affects Zotpress: from n/a through = 7.3.7...

8.8CVSS7.3AI score0.00594EPSS
Exploits0References1
OSV
OSV
added 2024/09/13 6:8 p.m.18 views

RHSA-2020:0946 Red Hat Security Advisory: Red Hat Single Sign-On 7.3.7 security update on RHEL 7

Bulletin has no description...

5.6CVSS5.7AI score0.01092EPSS
Exploits0References9
OSV
OSV
added 2024/09/13 6:8 p.m.13 views

RHSA-2020:0945 Red Hat Security Advisory: Red Hat Single Sign-On 7.3.7 security update on RHEL 6

Bulletin has no description...

5.6CVSS5.7AI score0.01092EPSS
Exploits0References9
CVE
CVE
added 2024/03/29 1:42 p.m.57 views

CVE-2024-30488

CVE-2024-30488 is tied to the Zotpress WordPress plugin (Zotpress, affected: n/a through 7.3.7) and is characterized as an SQL Injection. The linked Red Hat/WordFence entries confirm the issue exists as an authenticated (Contributor+) SQL injection against Zotpress and note a patched status, indi...

8.8CVSS7.3AI score0.00594EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/06 12:0 a.m.4 views

PT-2023-27825 · F-Revocrm · F-Revocrm

Name of the Vulnerable Software and Affected Versions: F-RevoCRM versions 7.3.0 through 7.3.7 Description: The issue is a cross-site scripting vulnerability. If exploited, it allows an arbitrary script to be executed on the web browser of the user using the product. Recommendations: For versions...

5.4CVSS5.2AI score0.00303EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/09/06 12:0 a.m.5 views

PT-2023-27823 · F-Revocrm · F-Revocrm

Name of the Vulnerable Software and Affected Versions: F-RevoCRM versions 7.3.7 through 7.3.8 Description: The issue is an OS command injection vulnerability. If exploited, an attacker with access to the product may execute an arbitrary OS command on the server where the product is running...

9.8CVSS9.6AI score0.01261EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.1 views

CVE-2022-42122

A SQL injection vulnerability in the Friendly Url module in Liferay Portal 7.3.7, and Liferay DXP 7.3 fix pack 2 through update 4 allows attackers to execute arbitrary SQL commands via a crafted payload injected into the title field of a friendly URL...

9.4AI score0.00806EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/01/17 10:15 a.m.6 views

CVE-2022-0180

Cross-site request forgery CSRF vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote attacker to hijack the authentication of administrators and conduct arbitrary operations via a specially crafted web page...

8.8CVSS6.8AI score0.00654EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/17 10:15 a.m.6 views

CVE-2022-0181

Reflected cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS5.9AI score0.01277EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/17 10:15 a.m.8 views

CVE-2022-0182

Stored cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote authenticated attacker to inject an arbitrary script via an website that uses Quiz And Survey Master...

5.4CVSS5.8AI score0.00974EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/05/21 12:0 a.m.58 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 7 (Moderate) (RHSA-2021:2047)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2047 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9CVSS7.6AI score0.22709EPSS
Exploits1References33
Tenable Nessus
Tenable Nessus
added 2021/05/20 12:0 a.m.43 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 8 (Moderate) (RHSA-2021:2048)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2048 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9CVSS7.6AI score0.22709EPSS
Exploits1References33
RedHat Linux
RedHat Linux
added 2021/05/19 3:28 p.m.102 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 6

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9CVSS7.2AI score0.22709EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2021/05/19 3:26 p.m.91 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 7

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9CVSS7.2AI score0.22709EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2021/05/19 3:21 p.m.305 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9CVSS7.2AI score0.22709EPSS
Exploits1References28
Symantec
Symantec
added 2019/10/08 12:0 a.m.19 views

PHP 'new COM()' Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.2 PHP PHP...

1.7AI score
Exploits0References2Affected Software1
Rows per page
Query Builder