Lucene search
+L

275 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-42275

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00138EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-59876

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12456

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00179EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-58235

Malicious code in bioql PyPI...

9.9CVSS7.1AI score0.00828EPSS
Exploits0References3
Snyk
Snyk
added 2025/09/22 9:51 p.m.6 views

Cross-site Scripting (XSS)

Overview DotNetNuke.Core is a references provider to the DotNetNuke.dll to develop extensions for the DNN Platform. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the Biography field. An attacker can execute arbitrary JavaScript code in the context of the website...

6.3CVSS5.3AI score0.00166EPSS
Exploits0References2
NVD
NVD
added 2025/09/15 3:15 p.m.7 views

CVE-2023-53207

In the Linux kernel, the following vulnerability has been resolved: ublk: fail to recover device if queue setup is interrupted In ublkctrlendrecovery, if waitforcompletioninterruptible is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLKCMDENDUSERRECOVERY,...

5.5CVSS0.00143EPSS
Exploits0References3
OSV
OSV
added 2025/09/15 3:15 p.m.9 views

UBUNTU-CVE-2023-53207

In the Linux kernel, the following vulnerability has been resolved: ublk: fail to recover device if queue setup is interrupted In ublkctrlendrecovery, if waitforcompletioninterruptible is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLKCMDENDUSERRECOVERY,...

5.5CVSS5.7AI score0.00143EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/15 2:21 p.m.12 views

CVE-2023-53207 ublk: fail to recover device if queue setup is interrupted

In the Linux kernel, the following vulnerability has been resolved: ublk: fail to recover device if queue setup is interrupted In ublkctrlendrecovery, if waitforcompletioninterruptible is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLKCMDENDUSERRECOVERY,...

0.00143EPSS
Exploits0References3
OSV
OSV
added 2025/09/15 2:21 p.m.4 views

CVE-2023-53207 ublk: fail to recover device if queue setup is interrupted

In the Linux kernel, the following vulnerability has been resolved: ublk: fail to recover device if queue setup is interrupted In ublkctrlendrecovery, if waitforcompletioninterruptible is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLKCMDENDUSERRECOVERY,...

5.5CVSS6.1AI score0.00143EPSS
Exploits0References6
Packet Storm News
Packet Storm News
added 2025/08/10 12:0 a.m.8 views

TraceLens: Question-Driven Debugging for Taint Flow Understanding

Taint analysis is a security analysis technique used to track the flow of potentially dangerous data through an application and its dependent libraries. Investigating why certain unexpected flows appear and why expected flows are missing is an important sensemaking process during end-user taint...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/08 12:0 a.m.8 views

PT-2025-112: Stored XSS in FreeScout

The vulnerability was identified in FreeScout, version 1.8.182. The discovered vulnerability allows an attacker to inject arbitrary HTML tags and JavaScript into web pages, resulting in execution of malicious code in the victim’s browser. Vulnerability status: Confirmed by vendor Date of...

6.1CVSS6.1AI score
Exploits0References2
CVE
CVE
added 2025/08/06 2:45 p.m.33 views

CVE-2024-52885

CVE-2024-52885 affects the Mobile Access Portal File Share component (Check Point Mobile Access). A directory traversal flaw allows an authenticated user (authorized to at least one File Share app) to enumerate file names in directories accessible to the nobody user on the Mobile Access gateway. ...

5.4CVSS6.4AI score0.00455EPSS
Exploits0References1Affected Software2
SUSE Linux
SUSE Linux
added 2025/07/31 10:35 a.m.5 views

Security update 5.1.0 GM for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version update from 5.1.6-0 to 5.1.8-0 with the following key change: Update translation strings uyuni-tools: Version 5.1.14-0: Fix mgradm backup create handling of images and systemd files bsc1244563 migrate existing TLS certificates from 4.3...

9.6CVSS7.6AI score0.00982EPSS
Exploits0References80
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.7 views

The vulnerability of the Siebel CRM End User component of the Oracle Siebel CRM system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Siebel CRM End User component of the Oracle Siebel CRM system is related to insufficient protection of administrative functions. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

5.3CVSS7.2AI score0.003EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/07/15 8:15 p.m.3 views

CVE-2025-30758

Vulnerability in the Siebel CRM End User product of Oracle Siebel CRM component: User Interface. Supported versions that are affected are 25.0-25.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel CRM End User. Successful attacks ...

5.3CVSS5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:47 a.m.11 views

CVE-2024-47122

In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device EUD. This allows for complete decryption of keys stored on the EUD if physically compromised. This allows an attacker to decrypt all encrypted broadcast communications based on encryption keys...

6.5CVSS6.8AI score0.00138EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:52 a.m.11 views

CVE-2023-52268

The End-User Portal module before 1.0.65 for FreeScout sometimes allows an attacker to authenticate as an arbitrary user because a session token can be sent to the /auth endpoint. NOTE: this module is not part of freescout-helpdesk/freescout on GitHub...

9.1CVSS7AI score0.00609EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:46 p.m.10 views

CVE-2020-15408

An issue was discovered in Pulse Secure Pulse Connect Secure before 9.1R8. An authenticated attacker can access the admin page console via the end-user web interface because of a rewrite...

5.8CVSS6.6AI score0.0077EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:26 a.m.9 views

CVE-2013-5798

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.2.0.0 and 11.1.2.1.0 allows remote attackers to affect integrity via unknown vectors related to End User Self Service...

4.3CVSS6.1AI score0.00985EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/05/21 7:52 p.m.18 views

The Front End User Registration extension for TYPO3 (sr_feuser_register) Remote Code Execution

The srfeuserregister extension through 12.4.8 for TYPO3 allows Remote Code Execution via unsafe deserialization...

10CVSS7.6AI score0.00598EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder