Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 2025/11/27 1:54 p.m.6 views

CVE-2025-56423

An issue in Austrian Academy of Sciences AW Austrian Archaeological Institute OpenAtlas v.8.12.0 allows a remote attacker to obtain sensitive information via the login error messages...

5.3CVSS6.7AI score0.00278EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/27 1:54 p.m.4 views

CVE-2025-60915

An issue in the size query parameter /views/file.py of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute a path traversal via a crafted request...

8.1CVSS7AI score0.00387EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/24 6:31 p.m.8 views

EUVD-2025-198803

An issue in Austrian Academy of Sciences AW Austrian Archaeological Institute OpenAtlas v.8.12.0 allows a remote attacker to obtain sensitive information via the login error messages...

5.3CVSS6.2AI score0.00278EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/24 6:31 p.m.5 views

EUVD-2025-198802

Incorrect access control in Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to access sensitive information via sending a crafted GET request to the /displaylogo endpoint...

4.6CVSS6AI score0.0016EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/24 12:0 a.m.2 views

CVE-2025-56423

An issue in Austrian Academy of Sciences AW Austrian Archaeological Institute OpenAtlas v.8.12.0 allows a remote attacker to obtain sensitive information via the login error messages...

6.3AI score0.00278EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.4 views

PT-2025-47928

Incorrect access control in Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to access sensitive information via sending a crafted GET request to the /display logo endpoint...

6.5AI score0.0016EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/24 12:0 a.m.9 views

CVE-2025-60916

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

0.0021EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-23504

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00526EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-23512

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00386EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-23513

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00435EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/06 12:14 a.m.11 views

CVE-2025-51534

A cross-site scripting XSS vulnerability in Austrian Archaeological Institute AI OpenAtlas v8.11.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name field...

8.1CVSS5.5AI score0.00386EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/06 12:14 a.m.14 views

CVE-2025-51536

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a hardcoded Administrator password...

9.8CVSS6.8AI score0.00526EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/06 12:14 a.m.10 views

CVE-2025-51535

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a SQL injection vulnerability...

9.1CVSS7.7AI score0.00435EPSS
Exploits1References1
NVD
NVD
added 2025/08/04 5:15 p.m.8 views

CVE-2025-51535

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a SQL injection vulnerability...

9.1CVSS0.00435EPSS
Exploits1References2
NVD
NVD
added 2025/08/04 3:15 p.m.8 views

CVE-2025-51536

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a hardcoded Administrator password...

9.8CVSS0.00526EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/08/04 12:0 a.m.4 views

CVE-2025-51535

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a SQL injection vulnerability...

8.5AI score0.00435EPSS
Exploits1References2
OSV
OSV
added 2025/08/04 12:0 a.m.3 views

CVE-2025-51534

A cross-site scripting XSS vulnerability in Austrian Archaeological Institute AI OpenAtlas v8.11.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name field...

8.1CVSS5.7AI score0.00386EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/08/04 12:0 a.m.8 views

PT-2025-31819 · Openatlas · Openatlas

Name of the Vulnerable Software and Affected Versions: OpenAtlas version 8.11.0 Description: OpenAtlas v8.11.0 contains a hardcoded Administrator password. Recommendations: Change the hardcoded Administrator password...

9.8CVSS6.6AI score0.00526EPSS
Exploits1References4
CVE
CVE
added 2025/08/04 12:0 a.m.22 views

CVE-2025-51534

OpenAtlas v8.11.0 from Austrian Archaeological Institute is affected by a cross-site scripting (XSS) issue that allows injecting a crafted payload into the Name field to execute arbitrary web scripts/HTML. CVSS v3.1 base score 8.1 (HIGH) with NETWORK attack vector, low attack complexity, user int...

8.1CVSS5.7AI score0.00386EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/08/04 12:0 a.m.10 views

CVE-2025-51534

A cross-site scripting XSS vulnerability in Austrian Archaeological Institute AI OpenAtlas v8.11.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name field...

0.00386EPSS
Exploits1References2
Rows per page
Query Builder