Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8679

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00449EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-8680

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00415EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/04/01 3:33 p.m.18 views

CVE-2025-2952

A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this vulnerability is an unknown functionality of the file /api/api.php?mod=upload=1. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit has...

9.8CVSS7.3AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/01 11:31 a.m.14 views

CVE-2025-2951

A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unknown function of the file /api/data.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a...

9.8CVSS7.8AI score0.00449EPSS
Exploits1References1
NVD
NVD
added 2025/03/30 3:15 p.m.23 views

CVE-2025-2952

A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this vulnerability is an unknown functionality of the file /api/api.php?mod=upload&type=1. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit...

9.8CVSS0.00415EPSS
Exploits1References3
CVE
CVE
added 2025/03/30 3:0 p.m.112 views

CVE-2025-2952

CVE-2025-2952 : Bluestar Micro Mall 1.0 contains a vulnerability in the API endpoint /api/api.php?mod=upload&type=1 where manipulating the File parameter leads to unrestricted file upload. The issue is exploitable remotely and the exploit has been disclosed publicly, enabling potential remote com...

9.8CVSS7.2AI score0.00415EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/03/30 3:0 p.m.38 views

CVE-2025-2952 Bluestar Micro Mall api.php unrestricted upload

A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this vulnerability is an unknown functionality of the file /api/api.php?mod=upload&type=1. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit...

6.5CVSS0.00415EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/03/30 3:0 p.m.12 views

CVE-2025-2952 Bluestar Micro Mall api.php unrestricted upload

A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this vulnerability is an unknown functionality of the file /api/api.php?mod=upload&type=1. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit...

6.5CVSS6.5AI score0.00415EPSS
Exploits1References3
OSV
OSV
added 2025/03/30 12:15 p.m.3 views

CVE-2025-2951

A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unknown function of the file /api/data.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a...

9.8CVSS6.5AI score0.00449EPSS
Exploits1References4
NVD
NVD
added 2025/03/30 12:15 p.m.15 views

CVE-2025-2951

A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unknown function of the file /api/data.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a...

9.8CVSS0.00449EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/30 11:31 a.m.36 views

CVE-2025-2951 Bluestar Micro Mall data.php sql injection

A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unknown function of the file /api/data.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a...

6.5CVSS0.00449EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/30 11:31 a.m.12 views

CVE-2025-2951 Bluestar Micro Mall data.php sql injection

A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unknown function of the file /api/data.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a...

6.5CVSS6.9AI score0.00449EPSS
Exploits1References4
CVE
CVE
added 2025/03/30 11:31 a.m.110 views

CVE-2025-2951

Bluestar Micro Mall 1.0 is affected by an SQL injection vulnerability in an unknown function of /api/data.php accessed via the Search parameter. The issue can be exploited remotely, and the exploit has been disclosed publicly. Credible sources (NVD, Red Hat, CIRCL, CVE records) consistently descr...

9.8CVSS7.7AI score0.00449EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/30 12:0 a.m.5 views

PT-2025-13622 · Unknown · Bluestar Micro Mall

Name of the Vulnerable Software and Affected Versions: Bluestar Micro Mall version 1.0 Description: A critical vulnerability was found in Bluestar Micro Mall, affecting an unknown functionality of the file "/api/api.php?mod=upload&type=1". The manipulation of the File argument leads to unrestrict...

9.8CVSS6.2AI score0.00415EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/03/30 12:0 a.m.5 views

Bluestar Micro Mall 代码问题漏洞

Bluestar Micro Mall is a shopping mall system from Bluestar, Inc. A code issue vulnerability exists in Bluestar Micro Mall version 1.0, which stems from an incorrect manipulation of the parameter File that can lead to unlimited uploads...

9.8CVSS6.5AI score0.00415EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/03/30 12:0 a.m.5 views

Bluestar Micro Mall 注入漏洞

Bluestar Micro Mall is a shopping mall system from Bluestar. An injection vulnerability exists in Bluestar Micro Mall version 1.0, which stems from the fact that incorrect manipulation of the parameter Search can lead to SQL injection...

9.8CVSS7AI score0.00449EPSS
Exploits1References5
Rows per page
Query Builder