Lucene search
+L

26 matches found

osv
osv
added 2025/08/29 1:49 p.m.4 views

SUSE-SU-2025:03028-1 Security update for python-future

This update for python-future fixes the following issues: - CVE-2025-50817: Fixed arbitrary code execution via the automatic import of file test.py bsc1248124...

5.4CVSS6.7AI score0.0029EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/08/14 12:0 a.m.5 views

python-future 安全漏洞

python-future is a Python compatible software open source by Python Charmers. A security vulnerability exists in python-future version 1.0.0, which stems from the automatic import of the test.py file and could lead to the execution of arbitrary code...

5.4CVSS7AI score0.0029EPSS
Exploits0References5
osv
osv
added 2024/11/27 12:56 a.m.7 views

MAL-2024-11094 Malicious code in shopee-ui-automatic-import-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6e30109d0ce569668c54f7d030ae4d33fd3858572a05996c3a53877d48629ef8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
cnnvd
cnnvd
added 2023/02/07 12:0 a.m.7 views

Logicaldoc LogicalDOC 跨站脚本漏洞

LogicalDOC is the U.S. LogicalDOC company a set of document management system developed using Java technology . The system has features such as Lucene full-text search indexing and automatic import. A security vulnerability exists in LogicalDOC Enterprise. An attacker could exploit this...

5.4CVSS5.7AI score0.00582EPSS
Exploits2References2
nvd
nvd
added 2019/07/09 9:15 p.m.18 views

CVE-2019-9150

Mailvelope prior to 3.3.0 does not require user interaction to import public keys shown on web page. This functionality can be tricked to either hide a key import from the user or obscure which key was imported...

5.3CVSS5.2AI score0.01379EPSS
Exploits0References3
exploitdb
exploitdb
added 2018/02/12 12:0 a.m.34 views

LogicalDOC Enterprise 7.7.4 - Root Remote Code Execution

LogicalDOC Enterprise 7.7.4 Post-Auth Command Execution Via Binary Path Manipulation Vendor: LogicalDOC Srl Product web page: https://www.logicaldoc.com Affected version: 7.7.4 7.7.3 7.7.2 7.7.1 7.6.4 7.6.2 7.5.1 7.4.2 7.1.1 Summary: LogicalDOC is a free document management system that is designe...

7.4AI score
Exploits0
Rows per page
Query Builder