Lucene search
K

85 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-7879

Malware in sbrugna...

6.1CVSS6.3AI score0.00699EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2010-5305

Malware in sbrugna...

8.5CVSS6.4AI score0.0032EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-6240

Malware in sbrugna...

6.8CVSS6.4AI score0.01564EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2019-0235

Malware in sbrugna...

6.1CVSS6.2AI score0.00769EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-7367

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.003EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2023-12364

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00457EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-1182

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.0064EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-29561

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00756EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-28289

Malicious code in bioql PyPI...

6.5CVSS5.5AI score0.00758EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-49646

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00287EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 4:15 p.m.7 views

CVE-2010-20045

FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...

8.5CVSS0.0032EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/20 3:32 p.m.11 views

CVE-2010-20045 FileWrangler <= 5.30 Stack Buffer Overflow

FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...

8.5CVSS0.0032EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.11 views

PT-2025-34097 · Undefined · Undefined

FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...

8.5CVSS8.2AI score0.0032EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/03/25 12:0 a.m.4 views

PT-2025-12776 · Asustor · Adm

Name of the Vulnerable Software and Affected Versions: ADM versions 4.1.0 through 4.3.3.RH61 ADM version 5.0.0.RIN1 and earlier Description: A stored Cross-Site Scripting XSS issue exists in the Access Control of ADM. The vulnerability allows an attacker to inject malicious scripts into the folde...

4.8CVSS5.6AI score0.00276EPSS
Exploits0References8
Snyk
Snyk
added 2025/03/10 9:31 p.m.2 views

Cross-site Scripting (XSS)

Overview concrete5/concrete5 is a concrete5 open source CMS. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to insufficient input sanitization in the "Add Folder" functionality. An attacker with admin privileges can exploit this by injecting malicious scripts int...

4.8CVSS5.3AI score0.003EPSS
Exploits0References3
NVD
NVD
added 2025/03/10 9:15 p.m.10 views

CVE-2025-0660

Concrete CMS versions 9.0.0 through 9.3.9 are affected by a stored XSS in Folder Function.The "Add Folder" functionality lacks input sanitization, allowing a rogue admin to inject XSS payloads as folder names. The Concrete CMS security team gave this vulnerability a CVSS 4.0 Score of 4.8 with...

4.8CVSS0.003EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/02/11 10:23 p.m.4 views

WordPress WP Table Manager plugin <= 4.1.3 - Missing Authorization to Authenticated (Subscriber+) Directory Traversal to Folder/File Name Disclosure vulnerability

Missing Authorization to Authenticated Subscriber+ Directory Traversal to Folder/File Name Disclosure vulnerability discovered by Nguyễn Trung Kiên in WordPress Plugin WP Table Manager versions = 4.1.3...

6.5CVSS6.9AI score0.00284EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/01/28 5:15 p.m.42 views

CVE-2024-8401

CWE-79: Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability exists when an authenticated attacker modifies folder names within the context of the product...

5.4CVSS0.00287EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/28 4:35 p.m.7 views

CVE-2024-8401

CWE-79: Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability exists when an authenticated attacker modifies folder names within the context of the product...

5.4CVSS5.4AI score0.00287EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/28 4:35 p.m.39 views

CVE-2024-8401

CWE-79: Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability exists when an authenticated attacker modifies folder names within the context of the product...

5.4CVSS0.00287EPSS
Exploits0References1
Rows per page
Query Builder