Lucene search
K

189 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-51726

Malicious code in bioql PyPI...

6.1CVSS9.1AI score0.00337EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-24873

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00757EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.36 views

EUVD-2022-4110

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.01089EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-49384

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00381EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27451

Malicious code in bioql PyPI...

10CVSS6.5AI score0.0074EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-49374

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00354EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.16 views

EUVD-2023-59170

Malicious code in bioql PyPI...

6.1CVSS8.7AI score0.00285EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33785

Malicious code in bioql PyPI...

6.1CVSS8.6AI score0.00586EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/09/10 12:38 p.m.8 views

Moderate: Red Hat Security Advisory: httpd:2.4 security update

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.1CVSS7.4AI score0.01149EPSS
Exploits1References5
OSV
OSV
added 2025/09/05 12:43 p.m.8 views

OESA-2025-2171 httpd security update

Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP respons...

9.1CVSS6.6AI score0.0097EPSS
Exploits1References6
AlmaLinux
AlmaLinux
added 2025/09/02 12:0 a.m.9 views

Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption...

9.1CVSS6.9AI score0.0097EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/08/14 1:43 p.m.4 views

httpd: insufficient escaping of user-supplied data in mod_ssl

A vulnerability was found in the Apache HTTP Server. Insufficient escaping of user-supplied data in modssl allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%varnamex" or "%varnamec" to...

7.5CVSS5.8AI score0.00669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/11 5:30 p.m.8 views

firefox: thunderbird: Potential user-assisted code execution in “Copy as cURL” command

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code...

8.1CVSS7.2AI score0.00306EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/30 9:42 a.m.7 views

firefox: thunderbird: Potential user-assisted code execution in “Copy as cURL” command

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code...

8.1CVSS7.2AI score0.00306EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/24 3:45 p.m.6 views

firefox: thunderbird: Potential user-assisted code execution in “Copy as cURL” command

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code...

8.1CVSS7.2AI score0.00306EPSS
Exploits0References6
OSV
OSV
added 2025/07/10 4:55 p.m.6 views

CVE-2024-47252 Apache HTTP Server: mod_ssl error log variable escaping

Insufficient escaping of user-supplied data in modssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%varnamex" or "%varnamec" to log variables...

7.5CVSS7AI score0.00669EPSS
Exploits0References6
CVE
CVE
added 2025/07/10 4:55 p.m.368 views

CVE-2024-47252

CVE-2024-47252 concerns the Apache HTTP Server’s mod_ssl: in versions up to 2.4.63, insufficient escaping of user-supplied data can allow an untrusted TLS client to insert escape characters into log files in some configurations (notably when CustomLog uses "%{varname}x" or "%{varname}c" to log mo...

7.5CVSS6.4AI score0.00669EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.6 views

PT-2025-28330 · WordPress · Foobox

Name of the Vulnerable Software and Affected Versions: The Lightbox & Modal Popup WordPress Plugin – FooBox plugin for WordPress versions up to, and including, 2.7.34 Description: The issue is related to Stored Cross-Site Scripting via image alternative texts due to insufficient input sanitizatio...

6.4CVSS5.7AI score0.0017EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.3 views

PT-2025-26916 · WordPress · Timezonecalculator

Name of the Vulnerable Software and Affected Versions: TimeZoneCalculator plugin for WordPress versions up to, and including, 3.37 Description: The issue is related to Stored Cross-Site Scripting in the TimeZoneCalculator plugin for WordPress. This is due to insufficient input sanitization and...

6.4CVSS6.1AI score0.00165EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.5 views

PT-2025-26914 · WordPress · E.Nigma Buttons

Name of the Vulnerable Software and Affected Versions: e.nigma buttons plugin for WordPress versions up to, and including, 1.1.3 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'button' shortcode due to insufficient input sanitization and output escaping on...

6.4CVSS5.9AI score0.00182EPSS
Exploits0References6
Rows per page
Query Builder