Lucene search
K

39 matches found

EUVD
EUVD
added 2026/06/08 11:45 a.m.10 views

EUVD-2026-35059

A weakness has been identified in Bolt CMS up to 3.7.5. This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML Attribute Handler. Executing a manipulation of the argument style can lead to HTML injection. It is possible to launch the attack...

5.1CVSS5.3AI score0.00191EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/30 9:18 a.m.15 views

CVE-2026-5128

...

0.00144EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.7 views

PT-2026-29007

Name of the Vulnerable Software and Affected Versions ArthurFiorette steam-trader version 2.1.1 Description A sensitive information exposure issue exists. An unauthenticated attacker can send a request to the /users API endpoint to retrieve sensitive Steam account data, including the account...

10CVSS5.9AI score0.00144EPSS
Exploits0References7
OSV
OSV
added 2025/11/10 12:0 p.m.3 views

RUSTSEC-2025-0116 tandem_garble_interop is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

6.9AI score
Exploits0References3
RustSec
RustSec
added 2025/11/10 12:0 p.m.7 views

tandem_garble_interop is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

7AI score
Exploits0
OSV
OSV
added 2025/10/22 9:47 p.m.12 views

GHSA-WWXP-HXH6-8GF8 binary_vec_io access memory out-of-bounds in binary_read_to_ref and binary_write_from_ref

Safe functions accept a single &T or &mut T but multiply by n to create slices extending beyond allocated memory when n 1. These functions use fromrawparts to create slices larger than the underlying allocation, violating memory safety. The binaryvecio repository is archived and unmaintained...

8.6CVSS5.9AI score
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-50062

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.0033EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:41 a.m.6 views

CVE-2024-9623

An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys to push to an archived repository...

6.5CVSS6.4AI score0.0033EPSS
Exploits0References1
OSV
OSV
added 2025/03/17 4:35 p.m.5 views

PYSEC-2025-8 After the owner removed the project from PyPI, another user uploaded a new version with non-working code

The pygments-style-solarized project was removed from PyPI by its owner on 2021-08-26. The GitHub repository was also updated to show unmaintained, and archived on 2025-08-31. Another user uploaded a new version, 100.10.7, which contains non-working code, with clear language that it intends to be...

7.1AI score
Exploits0References2
RustSec
RustSec
added 2025/02/21 12:0 p.m.7 views

resolve is unmaintained

resolve crate's GitHub repository is archived with no commits for seven years. Latest crates.io release is also seven years old. Possible alternatives hickory-resolver...

7.2AI score
Exploits0
OSV
OSV
added 2025/02/21 12:0 p.m.5 views

RUSTSEC-2025-0013 resolve is unmaintained

resolve crate's GitHub repository is archived with no commits for seven years. Latest crates.io release is also seven years old. Possible alternatives hickory-resolver...

7.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/02/21 12:0 a.m.4 views

PT-2025-10140 · Crates.Io · Resolve

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The software's GitHub repository has been archived with no commits for seven years, and the latest release on crates.io is also seven years old. Recommendations: At the moment, there is no...

7AI score
Exploits0References4
OSV
OSV
added 2025/01/13 12:0 p.m.3 views

RUSTSEC-2025-0026 registry is unmaintained

The author has archived the GitHub repository and mentions deprecation in project's README. Possible alternatives windows-registry...

7.2AI score
Exploits0References3
RustSec
RustSec
added 2025/01/13 12:0 p.m.5 views

registry is unmaintained

The author has archived the GitHub repository and mentions deprecation in project's README. Possible alternatives windows-registry...

7.2AI score
Exploits0
RustSec
RustSec
added 2024/12/09 12:0 p.m.6 views

gtk-layer-shell-sys GTK3 bindings - no longer maintained

The gtk-layer-shell-sys GTK3 bindings are no longer maintained. The maintainers have archived the repository, and added a note to the crate description and its README.md that the crates are no longer maintained. Please take a look at gtk4-layer-shell instead...

7.1AI score
Exploits0
OSV
OSV
added 2024/12/09 12:0 p.m.6 views

RUSTSEC-2024-0422 gtk-layer-shell GTK3 bindings - no longer maintained

The gtk-layer-shell GTK3 bindings are no longer maintained. The maintainers have archived the repository, and added a note to the crate description and its README.md that the crates are no longer maintained. Please take a look at gtk4-layer-shell instead...

7.1AI score
Exploits0References3
OSV
OSV
added 2024/12/09 12:0 p.m.7 views

RUSTSEC-2024-0423 gtk-layer-shell-sys GTK3 bindings - no longer maintained

The gtk-layer-shell-sys GTK3 bindings are no longer maintained. The maintainers have archived the repository, and added a note to the crate description and its README.md that the crates are no longer maintained. Please take a look at gtk4-layer-shell instead...

7.1AI score
Exploits0References3
OSV
OSV
added 2024/10/13 7:7 p.m.79 views

BIT-GITLAB-2024-9623 Incorrect Authorization in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys to push to an archived repository...

6.5CVSS5.4AI score0.0033EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/11 12:0 a.m.14 views

GitLab 11.4 < 17.2.9 / 17.3 < 17.3.5 / 17.4 < 17.4.2 (CVE-2024-5005)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Run pipelines on arbitrary branches An attacker can impersonate arbitrary user SSRF in Analytics Dashboard Viewing diffs of MR with conflicts can be slow HTMLi in OAuth page Deploy Key...

4.3CVSS5.8AI score0.00373EPSS
Exploits1References4
NVD
NVD
added 2024/10/10 10:15 a.m.21 views

CVE-2024-9623

An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys to push to an archived repository...

6.5CVSS0.0033EPSS
Exploits0References1
Rows per page
Query Builder