Lucene search
+L

31 matches found

Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.13 views

PT-2026-52851

Name of the Vulnerable Software and Affected Versions Dokku versions prior to 0.38.2 Description The openresty-vhosts plugin copies files from an application's openresty/http-includes/ git repository directory to the host. The plugin then interpolates these filenames, without escaping, into a...

9CVSS6.1AI score0.00274EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/05 6:25 p.m.1 views

CVE-2025-15327

Tanium addressed an improper access controls vulnerability in Deploy...

4.3CVSS5.3AI score0.00238EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-10564

Malware in sbrugna...

9CVSS8.8AI score0.12475EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-19679

Malware in sbrugna...

7.5CVSS7.5AI score0.01251EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-2222

Malware in sbrugna...

9CVSS6.4AI score0.0293EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-3302

Malware in sbrugna...

8.1CVSS8.2AI score0.01173EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-18786

Malware in sbrugna...

6.1CVSS6.3AI score0.0106EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-42975

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00391EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25827

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00224EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-35002

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00447EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-34350

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00657EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-24367

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.22399EPSS
Exploits3References1
CVE
CVE
added 2025/08/12 5:9 p.m.126 views

CVE-2025-53772

This CVE affects Microsoft Web Deploy (deserialization of untrusted data) enabling Remote Code Execution over the network. Affected component is Web Deploy’s deserialization pathway, with evidence of in-the-wild and PoC exploits on public GitHub (e.g., stand-alone and IIS WebDeploy PoCs). The vul...

8.8CVSS7.5AI score0.22399EPSS
In wildExploits3References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 12:22 a.m.15 views

CVE-2022-4870

In affected versions of Octopus Deploy it is possible to discover network details via error message...

5.3CVSS6.9AI score0.0045EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:10 p.m.22 views

CVE-2022-1901

In affected versions of Octopus Deploy it is possible to unmask sensitive variables by using variable preview...

5.3CVSS6.8AI score0.00455EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:30 p.m.15 views

CVE-2022-2507

In affected versions of Octopus Deploy it is possible to render user supplied input into the webpage...

5.3CVSS6.9AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:14 p.m.6 views

CVE-2020-26161

In Octopus Deploy through 2020.4.2, an attacker could redirect users to an external site via a modified HTTP Host header...

6.1CVSS6.7AI score0.0106EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 1:25 p.m.7 views

CVE-2018-12089

In Octopus Deploy version 2018.5.1 to 2018.5.7, a user with Task View is able to view a password for a Service Fabric Cluster, when the Service Fabric Cluster target is configured in Azure Active Directory security mode and a deployment is executed with OctopusPrintVariables set to True. This is...

7.5CVSS7AI score0.00929EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:51 a.m.9 views

CVE-2018-11320

In Octopus Deploy 2018.4.4 through 2018.5.1, Octopus variables that are sourced from the target do not have sensitive values obfuscated in the deployment logs...

9.8CVSS6.9AI score0.01376EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/12 5:43 a.m.18 views

CVE-2025-0539

In affected Microsoft Windows versions of Octopus Deploy, the server can be coerced into sending server-side requests that contain authentication material allowing a suitably positioned attacker to compromise the account running Octopus Server and potentially the host infrastructure itself...

8.8CVSS7.2AI score0.0034EPSS
Exploits0References1
Rows per page
Query Builder