Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-28061

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00256EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:39 a.m.5 views

CVE-2023-23997

Cross-Site Request Forgery CSRF vulnerability in Dave Jesch Database Collation Fix plugin = 1.2.7 versions...

8.8CVSS7AI score0.00256EPSS
Exploits0References1
OSV
OSV
added 2024/11/20 5:21 p.m.3 views

DRUPAL-CORE-2024-004

Drupal's uniqueness checking for certain user fields is inconsistent depending on the database engine and its collation. As a result, a user may be able to register with the same email address as another user. This may lead to data integrity issues...

8.1CVSS6.7AI score0.00408EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/09/05 2:13 p.m.5 views

python-social-auth: Improper Handling of Case Sensitivity in social-auth-app-django

A flaw was found in social-auth-app-django. In affected versions of this package, due to default case-insensitive collation in MySQL or MariaDB databases, third-party authentication user IDs are not case-sensitive and could cause different IDs to match...

4.9CVSS5.7AI score0.00581EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/10 6:41 p.m.3 views

python-social-auth: Improper Handling of Case Sensitivity in social-auth-app-django

A flaw was found in social-auth-app-django. In affected versions of this package, due to default case-insensitive collation in MySQL or MariaDB databases, third-party authentication user IDs are not case-sensitive and could cause different IDs to match...

4.9CVSS5.7AI score0.00581EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/25 11:11 p.m.4 views

SUSE CVE-2024-32879

Python Social Auth is a social authentication/registration mechanism. Prior to version 5.4.1, due to default case-insensitive collation in MySQL or MariaDB databases, third-party authentication user IDs are not case-sensitive and could cause different IDs to match. This issue has been addressed b...

4.9CVSS6.9AI score0.00581EPSS
Exploits0References3
NVD
NVD
added 2023/07/11 8:15 a.m.24 views

CVE-2023-23997

Cross-Site Request Forgery CSRF vulnerability in Dave Jesch Database Collation Fix plugin = 1.2.7 versions...

8.8CVSS5.8AI score0.00256EPSS
Exploits0References1
OSV
OSV
added 2023/07/11 8:15 a.m.3 views

CVE-2023-23997

Cross-Site Request Forgery CSRF vulnerability in Dave Jesch Database Collation Fix plugin = 1.2.7 versions...

8.8CVSS7.3AI score
Exploits0References1
Prion
Prion
added 2023/07/11 8:15 a.m.13 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Dave Jesch Database Collation Fix plugin = 1.2.7 versions...

6.8CVSS8.7AI score0.00256EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/11 7:39 a.m.40 views

CVE-2023-23997

CVE-2023-23997 affects the WordPress Database Collation Fix plugin (

8.8CVSS6.5AI score0.00256EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/11 7:39 a.m.20 views

CVE-2023-23997 WordPress Database Collation Fix Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Dave Jesch Database Collation Fix plugin = 1.2.7 versions...

4.3CVSS7.1AI score0.00256EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2023/07/11 12:0 a.m.12 views

Database Collation Fix < 1.2.8 - Cross-Site Request Forgery

Cross-Site Request Forgery CSRF vulnerability in Dave Jesch Database Collation Fix plugin = 1.2.7 versions...

8.8CVSS6.9AI score0.00256EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.4 views

WordPress Plugin Database Collation Fix 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site request forgery vulnerability exists in...

8.8CVSS8.1AI score0.00256EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/04/14 12:0 a.m.10 views

WordPress Database Collation Fix Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Database Collation Fix Type Plugin Vulnerable versions = 1.2.7 Fixed in 1.2.8 OWASP Top 10 A2: Broken Authentication Classification Cross Site Request Forgery CSRF CVE CVE-2023-23997 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 6a2700468349 Credits Mika Require...

8.8CVSS7AI score0.00256EPSS
Exploits0References2Affected Software1
Hacker One
Hacker One
added 2020/07/13 2:5 p.m.36 views

Mail.ru: Account takeover in cups.mail.ru using punycode characters

A logical bug in database collation usage for string comparison during access recovery process allowed to takover account in cups.mail.ru by registering colliding Unicode domain...

5.2AI score
Exploits0
Rows per page
Query Builder