Lucene search
K

5 matches found

Patchstack
Patchstack
added 2025/12/12 12:29 a.m.5 views

WordPress Simple Bike Rental plugin <= 1.0.6 - Missing Authorization to Authenticated (Subscriber+) Sensitive Booking Data Exposure vulnerability

Missing Authorization to Authenticated Subscriber+ Sensitive Booking Data Exposure vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Simple Bike Rental versions = 1.0.6...

5.3CVSS6.7AI score0.00204EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25128

Malicious code in bioql PyPI...

9.1CVSS6.5AI score0.00575EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25129

Malicious code in bioql PyPI...

9.1CVSS6.5AI score0.00675EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/20 5:33 p.m.18 views

CVE-2025-55282

aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows a user to elevate to superuser inside PostgreSQL databases during a migration from an untrusted source server. By exploiting a lack of searchpath restriction, an attacke...

9.1CVSS6.6AI score0.00675EPSS
Exploits0References1
OSV
OSV
added 2022/09/02 7:45 p.m.14 views

CVE-2022-31196 Server-Side Request Forgery (SSRF) vulnerability in Databasir

Databasir is a database metadata management platform. Databasir = 1.06 has Server-Side Request Forgery SSRF vulnerability. The SSRF is triggered by a sending a single HTTP POST request to create a databaseType. By supplying a jdbcDriverFileUrl that returns a non 200 response code, the url is...

7.6CVSS7.4AI score0.00815EPSS
Exploits1References5
Rows per page
Query Builder