Lucene search
K

343 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-7795

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.0028EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-39178

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00231EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-3077

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00408EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-3134

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00387EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2947

Malicious code in bioql PyPI...

4.6CVSS6.4AI score0.00428EPSS
Exploits0References3
Snyk
Snyk
added 2025/09/22 4:59 a.m.1 views

Malicious Package

Overview mpesa-backoffice-ekyc-frontend is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and thi...

9.8CVSS6.8AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/20 12:30 a.m.6 views

CVE-2025-50255

Cross Site Request Forgery CSRF vulnerability in Smartvista BackOffice SmartVista Suite 2.2.22 via crafted GET request...

7.8CVSS6.9AI score0.001EPSS
Exploits0References1
NVD
NVD
added 2025/09/18 4:15 p.m.6 views

CVE-2025-50255

Cross Site Request Forgery CSRF vulnerability in Smartvista BackOffice SmartVista Suite 2.2.22 via crafted GET request...

7.8CVSS0.001EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/18 12:0 a.m.4 views

CVE-2025-50255

Cross Site Request Forgery CSRF vulnerability in Smartvista BackOffice SmartVista Suite 2.2.22 via crafted GET request...

7.8CVSS6.5AI score0.001EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.5 views

PT-2025-38415

Name of the Vulnerable Software and Affected Versions Smartvista BackOffice SmartVista Suite version 2.2.22 Description The software contains a Cross Site Request Forgery CSRF flaw. A crafted GET request can trigger the flaw. Recommendations Apply any available updates to address the issue in...

7.8CVSS6.6AI score0.001EPSS
Exploits0References4
CVE
CVE
added 2025/09/18 12:0 a.m.13 views

CVE-2025-50255

CVE-2025-50255 describes a Cross Site Request Forgery (CSRF) vulnerability in Smartvista BackOffice SmartVista Suite 2.2.22 exploitable via a crafted GET request. The CVSS v3.1 base score is 7.8 (HIGH), with local attack vector, no privileges required, user interaction required, and impacts to co...

7.8CVSS6.5AI score0.001EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/18 12:0 a.m.9 views

CVE-2025-50255

Cross Site Request Forgery CSRF vulnerability in Smartvista BackOffice SmartVista Suite 2.2.22 via crafted GET request...

7.8CVSS0.001EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 8:1 p.m.6 views

GHSA-8XX5-H6M3-JR33 Presta Shop vulnerable to email enumeration

Impact An unauthenticated attacker with access to the back-office URL can manipulate the idemployee and resettoken parameters to enumerate valid back-office employee email addresses. Impacted parties: Store administrators and employees: their email addresses are exposed. Merchants: risk of...

4.2CVSS7AI score0.00755EPSS
Exploits1References9
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/29 7:24 p.m.3 views

Malicious code in mpesa-backoffice-frontend (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
OSV
OSV
added 2025/08/29 7:24 p.m.3 views

MAL-2025-42029 Malicious code in mpesa-backoffice-frontend (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/29 7:19 p.m.2 views

Malicious code in mpesa-backoffice-ekyc-frontend (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a1d40690b03ef978ac9c358228d4e0372e07e448e4e8d894ab44d49e70d23bac Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/08/29 7:19 p.m.1 views

MAL-2025-42028 Malicious code in mpesa-backoffice-ekyc-frontend (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a1d40690b03ef978ac9c358228d4e0372e07e448e4e8d894ab44d49e70d23bac Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.1 views

Malicious code in izberg-backoffice-inventory-js (npm)

The package izberg-backoffice-inventory-js was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-23521 Malicious code in izberg-backoffice-inventory-js (npm)

The package izberg-backoffice-inventory-js was found to contain malicious code...

7.2AI score
Exploits0
Snyk
Snyk
added 2025/06/24 6:42 p.m.3 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via an anonymously accessible endpoint that reveals details about configured password requirements. An attacker can gain insight into password policy information...

6.9CVSS6.9AI score0.00289EPSS
Exploits0References2
Rows per page
Query Builder