Lucene search
K

145 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-15569

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00815EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-6130

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00468EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-2656

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00566EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-5949

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00945EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/27 9:27 p.m.8 views

CVE-2024-13979 St. Joe ERP System SingleRowQueryConverter SQL Injection

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.3CVSS0.02899EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/06/14 8:21 a.m.6 views

CVE-2025-5301

ONLYOFFICE Docs DocumentServer in versions equal and below 8.3.1 are affected by a reflected cross-site scripting XSS issue when opening files via the WOPI protocol. Attackers could inject malicious scripts via crafted HTTP POST requests, which are then reflected in the server's HTML response...

6.1CVSS5.9AI score0.36306EPSS
Exploits1References1
NVD
NVD
added 2025/06/12 8:15 a.m.10 views

CVE-2025-5301

ONLYOFFICE Docs DocumentServer in versions equal and below 8.3.1 are affected by a reflected cross-site scripting XSS issue when opening files via the WOPI protocol. Attackers could inject malicious scripts via crafted HTTP POST requests, which are then reflected in the server's HTML response...

6.1CVSS0.36306EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.10 views

CVE-2024-1569

parisneo/lollms-webui is vulnerable to a denial of service DoS attack due to uncontrolled resource consumption. Attackers can exploit the /opencodeinvscode and similar endpoints without authentication by sending repeated HTTP POST requests, leading to the opening of Visual Studio Code or the...

7.5CVSS7.3AI score0.00782EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:13 a.m.8 views

CVE-2023-40148

Server-side request forgery SSRF in PingFederate allows unauthenticated http requests to attack network resources and consume server-side resources via forged HTTP POST requests...

6.5CVSS7.1AI score0.00461EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 12:54 a.m.10 views

CVE-2022-38375

An improper authorization vulnerability CWE-285 in Fortinet FortiNAC version 9.4.0 through 9.4.1 and before 9.2.6 allows an unauthenticated user to perform some administrative operations over the FortiNAC instance via crafted HTTP POST requests...

9.8CVSS7AI score0.01079EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:4 p.m.8 views

CVE-2022-34205

A cross-site request forgery CSRF vulnerability in Jenkins Jianliao Notification Plugin 1.1 and earlier allows attackers to send HTTP POST requests to an attacker-specified URL...

6.5CVSS6.7AI score0.00468EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:4 p.m.5 views

CVE-2022-34206

A missing permission check in Jenkins Jianliao Notification Plugin 1.1 and earlier allows attackers with Overall/Read permission to send HTTP POST requests to an attacker-specified URL...

4.3CVSS6.5AI score0.00525EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:21 p.m.11 views

CVE-2025-5000

A vulnerability was found in Linksys FGW3000-AH and FGW3000-HK up to 1.0.17.000000. It has been classified as critical. This affects the function controlpanelsw of the file /cgi-bin/sysconf.cgi of the component HTTP POST Request Handler. The manipulation of the argument filename leads to command...

9.8CVSS7.4AI score0.08686EPSS
Exploits0
NVD
NVD
added 2025/05/20 8:15 p.m.19 views

CVE-2025-4997

A vulnerability, which was classified as problematic, was found in H3C R2+ProG up to 200R004. Affected is the function UpdateWanParams/AddMacList/EditMacList/AddWlanMacList/EditWlanMacList/EditBasicSSID/EditGuestSSIDFor2P4G/EditBasicSSID5G/SetAPInfoById of the file /goform/aspForm of the componen...

7.1CVSS0.00441EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/20 7:31 p.m.11 views

CVE-2025-4997 H3C R2+ProG HTTP POST Request aspForm SetAPInfoById denial of service

A vulnerability, which was classified as problematic, was found in H3C R2+ProG up to 200R004. Affected is the function UpdateWanParams/AddMacList/EditMacList/AddWlanMacList/EditWlanMacList/EditBasicSSID/EditGuestSSIDFor2P4G/EditBasicSSID5G/SetAPInfoById of the file /goform/aspForm of the componen...

7.1CVSS7AI score0.00441EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/14 9:16 p.m.9 views

CVE-2025-3659

Improper authentication handling was identified in a set of HTTP POST requests affecting the following product families: Digi PortServer TS - prior to and including 82000747AA, build date 06/17/2022 Digi One SP/Digi One SP IA/Digi One IA - prior to and including 82000774Z, build date 10/19/2020...

9.4CVSS7.2AI score0.00268EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/12 8:40 p.m.5 views

CVE-2025-3659 Improper authentication handling for Digi PortServer TS; Digi One SP, SP IA, IA; Digi One IAP

Improper authentication handling was identified in a set of HTTP POST requests affecting the following product families: Digi PortServer TS - prior to and including 82000747AA, build date 06/17/2022 Digi One SP/Digi One SP IA/Digi One IA - prior to and including 82000774Z, build date 10/19/2020...

9.4CVSS7.2AI score0.00268EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/03/01 12:20 a.m.15 views

CVE-2024-51139

Buffer Overflow vulnerability in Vigor2620/LTE200 3.9.8.9 and earlier and Vigor2860/2925 3.9.8 and earlier and Vigor2862/2926 3.9.9.5 and earlier and Vigor2133/2762/2832 3.9.9 and earlier and Vigor165/166 4.2.7 and earlier and Vigor2135/2765/2766 4.4.5.1 and earlier and Vigor2865/2866/2927 4.4.5....

9.8CVSS7.9AI score0.00945EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 9:15 p.m.5 views

CVE-2024-51139

Buffer Overflow vulnerability in Vigor2620/LTE200 3.9.8.9 and earlier and Vigor2860/2925 3.9.8 and earlier and Vigor2862/2926 3.9.9.5 and earlier and Vigor2133/2762/2832 3.9.9 and earlier and Vigor165/166 4.2.7 and earlier and Vigor2135/2765/2766 4.4.5.1 and earlier and Vigor2865/2866/2927 4.4.5....

9.8CVSS7.9AI score0.00945EPSS
Exploits0References2
NVD
NVD
added 2025/02/27 9:15 p.m.18 views

CVE-2024-51139

Buffer Overflow vulnerability in Vigor2620/LTE200 3.9.8.9 and earlier and Vigor2860/2925 3.9.8 and earlier and Vigor2862/2926 3.9.9.5 and earlier and Vigor2133/2762/2832 3.9.9 and earlier and Vigor165/166 4.2.7 and earlier and Vigor2135/2765/2766 4.4.5.1 and earlier and Vigor2865/2866/2927 4.4.5....

9.8CVSS0.00945EPSS
Exploits0References1
Rows per page
Query Builder