Lucene search
+L

351 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-2682

Malware in sbrugna...

5CVSS6.4AI score0.0258EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-28256

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.0099EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-29728

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00758EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-55349

Malicious code in bioql PyPI...

6.9AI score0.00223EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-30289

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00275EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.24 views

EUVD-2022-4262

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00685EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1250

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01201EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24179

Malicious code in bioql PyPI...

6.4CVSS6.3AI score0.00175EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24173

Malicious code in bioql PyPI...

5CVSS6.3AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.25 views

EUVD-2025-24169

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00197EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12311

Malicious code in bioql PyPI...

4.3CVSS6AI score0.00719EPSS
Exploits0References4
OSV
OSV
added 2025/09/29 9:0 p.m.5 views

CVE-2025-54591 FreshRSS: Unauthenticated users can view default user's information

FreshRSS is a free, self-hostable RSS aggregator. Versions 1.26.3 and below expose information about feeds and tags of default admin users, due to lack of access checking in the FreshRSSAuth::hasAccess function used by some of the tag/feed related endpoints. FreshRSS controllers usually have a...

7.5CVSS6.6AI score0.00398EPSS
Exploits1References5
OSV
OSV
added 2025/09/10 8:27 p.m.18 views

GHSA-4269-MCFH-CP7Q Indico may disclose unauthorized user details access via legacy API

Impact A legacy API to retrieve user details could be misused to retrieve profile details of other users without having admin permissions due to a broken access check. Patches You should to update to Indico 3.3.8 as soon as possible. See the docs for instructions on how to update. Workarounds It ...

4.3CVSS6.9AI score0.00235EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/08/28 4:32 p.m.2 views

CVE-2025-57758 Contao has improper access control in the back end voters

Contao is an Open Source CMS. In versions starting from 5.0.0 and prior to 5.3.38 and 5.6.1, the table access voter in the back end doesn't check if a user is allowed to access the corresponding module. This issue has been patched in versions 5.3.38 and 5.6.1. A workaround involves not relying...

4.3CVSS6.1AI score0.00225EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/13 7:31 p.m.8 views

CVE-2025-53910

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the channel which allows attackers to create a channel subscription without proper access to the channel via API call to the edit channel subscription endpoint...

4CVSS7.1AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/13 7:31 p.m.3 views

CVE-2025-48731

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the Confluence space which allows attackers to edit a subscription for a Confluence space the user does not have access for via edit subscription endpoint...

6.4CVSS7.1AI score0.00175EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/13 7:31 p.m.11 views

CVE-2025-53857

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the channel which allows attackers to get channel subscription details without proper access to the channel via API call to the GET autocomplete/GetChannelSubscriptions endpoint...

3.7CVSS7.1AI score0.00206EPSS
Exploits0References1
NVD
NVD
added 2025/08/11 7:15 p.m.6 views

CVE-2025-54458

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the Confluence space which allows attackers to create a subscription for a Confluence space the user does not have access to via the create subscription endpoint...

5CVSS0.00206EPSS
Exploits0References1
CVE
CVE
added 2025/08/11 6:57 p.m.28 views

CVE-2025-8285

Mattermost Confluence Plugin has a Missing Authorization vulnerability in versions

5.3CVSS7.1AI score0.00197EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/08/11 6:57 p.m.22 views

CVE-2025-8285 Unauthorized Channel Subscription Creation in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the channel which allows attackers to create channel subscription without proper access to the channel via API call to the create channel subscription endpoint...

4CVSS0.00197EPSS
Exploits0References1
Rows per page
Query Builder