Lucene search
K

212 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-30442

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00727EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-16202

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00202EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-16193

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00202EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-31501

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink. CVE-2025-31501 Note that Nessus relies on the presen...

7.2CVSS6.2AI score0.00202EPSS
Exploits0References2
NVD
NVD
added 2025/05/28 6:15 p.m.10 views

CVE-2025-31500

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name...

7.2CVSS0.00202EPSS
Exploits0References2
NVD
NVD
added 2025/05/28 6:15 p.m.12 views

CVE-2025-31501

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink...

7.2CVSS0.00202EPSS
Exploits0References2
OSV
OSV
added 2025/05/28 6:15 p.m.3 views

UBUNTU-CVE-2025-30087

Best Practical RT Request Tracker 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted parameters in a search URL...

7.2CVSS5.8AI score0.00271EPSS
Exploits0References3
OSV
OSV
added 2025/05/28 12:0 a.m.5 views

CVE-2025-31501

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink...

7.2CVSS6.2AI score0.00202EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/28 12:0 a.m.4 views

Best Practical RT 跨站脚本漏洞

Best Practical RT is a request tracker from Best Practical, Inc. A cross-site scripting vulnerability exists in Best Practical RT versions 5.0 through 5.0.7, which stems from the injection of JavaScript into an asset name and could lead to cross-site scripting...

7.2CVSS5.9AI score0.00202EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/28 12:0 a.m.9 views

CVE-2025-31500

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name...

7.2CVSS6.1AI score0.00202EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/28 12:0 a.m.7 views

CVE-2025-31501

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink...

7.2CVSS6.1AI score0.00202EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/05/28 12:0 a.m.5 views

Best Practical RT 跨站脚本漏洞

Best Practical RT is a request tracker from Best Practical, Inc. A cross-site scripting vulnerability exists in Best Practical RT versions 5.0 through 5.0.7, which stems from the injection of JavaScript into RT permalinks, which could lead to cross-site scripting...

7.2CVSS5.9AI score0.00202EPSS
Exploits0References4
OSV
OSV
added 2025/05/28 12:0 a.m.4 views

CVE-2025-31500

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name...

7.2CVSS6.2AI score0.00202EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/28 12:0 a.m.4 views

Best Practical RT 跨站脚本漏洞

Best Practical RT is a request tracker from Best Practical, Inc. A cross-site scripting vulnerability exists in Best Practical RT versions 4.4 through 4.4.7 and 5.0 through 5.0.7, which stems from the injection of specially crafted parameters in the search URL that could lead to cross-site...

7.2CVSS5.9AI score0.00271EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 4:16 a.m.11 views

CVE-2023-41259

Best Practical Request Tracker RT before 4.4.7 and 5.x before 5.0.5 allows Information Disclosure via fake or spoofed RT email headers in an email message or a mail-gateway REST API call...

7.5CVSS6.7AI score0.00717EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:33 p.m.4 views

CVE-2022-25803

Best Practical Request Tracker RT before 5.0.3 has an Open Redirect via a ticket search...

6.1CVSS6.9AI score0.00494EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:46 a.m.9 views

CVE-2011-5093

Best Practical Solutions RT 4.x before 4.0.6 does not properly implement the DisallowExecuteCode option, which allows remote authenticated users to bypass intended access restrictions and execute arbitrary code by leveraging access to a privileged account, a different vulnerability than...

7.5CVSS7.3AI score0.03101EPSS
Exploits0References1
NVD
NVD
added 2025/05/05 12:15 p.m.39 views

CVE-2025-2545

Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES 3DES cryptographic algorithm is used to protect emails sent with S/MIME encryption. Triple DES is considered obsolete and insecure due to its susceptibility to birthday attacks, which could...

2.3CVSS0.0016EPSS
Exploits0References4
OSV
OSV
added 2025/05/05 12:15 p.m.17 views

CVE-2025-2545

Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES 3DES cryptographic algorithm is used to protect emails sent with S/MIME encryption. Triple DES is considered obsolete and insecure due to its susceptibility to birthday attacks, which could...

6.7AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/05 11:28 a.m.19 views

CVE-2025-2545 Deprecated 3DES cryptographic algorithm used by Request Tracker in emails encrypted with S/MIME

Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES 3DES cryptographic algorithm is used to protect emails sent with S/MIME encryption. Triple DES is considered obsolete and insecure due to its susceptibility to birthday attacks, which could...

2.3CVSS5.9AI score0.0016EPSS
Exploits0References1
Rows per page
Query Builder