Lucene search
K

66 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-44229

Malicious code in bioql PyPI...

8.8CVSS5.3AI score0.00523EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-23913

Malicious code in bioql PyPI...

7.2CVSS6.7AI score0.04079EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-50647

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0098EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-23912

Malicious code in bioql PyPI...

9.8CVSS5.5AI score0.00855EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:19 a.m.8 views

CVE-2024-30886

A stored cross-site scripting XSS vulnerability in the remotelink function of HadSky v7.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter...

5.4CVSS5.6AI score0.00325EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:12 a.m.10 views

CVE-2024-30885

Reflected Cross-Site Scripting XSS vulnerability in HadSky v7.6.3, allows remote attackers to execute arbitrary code and obtain sensitive information via the chklogin.php component...

6.1CVSS6.3AI score0.00495EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.14 views

CVE-2023-3579

A vulnerability, which was classified as problematic, has been found in HadSky 7.11.8. Affected by this issue is some unknown functionality of the component User Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to t...

8.8CVSS6.8AI score0.00523EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:58 a.m.10 views

CVE-2023-46428

An arbitrary file upload vulnerability in HadSky v7.12.10 allows attackers to execute arbitrary code via a crafted file...

8.8CVSS7.8AI score0.0098EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:34 a.m.7 views

CVE-2023-1685

A vulnerability was found in HadSky up to 7.11.8. It has been declared as critical. This vulnerability affects unknown code of the file /install/index.php of the component Installation Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has be...

7.2CVSS7.6AI score0.04079EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:32 a.m.6 views

CVE-2023-1684

A vulnerability was found in HadSky 7.7.16. It has been classified as problematic. This affects an unknown part of the file upload/index.php?c=app=superadmin:index. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

9.8CVSS6.9AI score0.00855EPSS
Exploits1References1
OSV
OSV
added 2024/04/23 10:15 p.m.4 views

CVE-2024-30886

A stored cross-site scripting XSS vulnerability in the remotelink function of HadSky v7.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter...

5.4CVSS5.9AI score0.00325EPSS
Exploits1References1
NVD
NVD
added 2024/04/23 10:15 p.m.11 views

CVE-2024-30886

A stored cross-site scripting XSS vulnerability in the remotelink function of HadSky v7.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter...

5.4CVSS5.4AI score0.00325EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/04/23 12:0 a.m.20 views

CVE-2024-30886

A stored cross-site scripting XSS vulnerability in the remotelink function of HadSky v7.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter...

5.5AI score0.00325EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/04/23 12:0 a.m.4 views

HadSky 跨站脚本漏洞

HadSky is an original open source php lightweight forum system by the Chinese company HadSky. A cross-site scripting vulnerability exists in HadSky v7.6.3, which originates from the presence of cross-site scripting in the remote linking functionality that allows an attacker to execute arbitrary w...

5.4CVSS6AI score0.00325EPSS
Exploits1References2
CVE
CVE
added 2024/04/23 12:0 a.m.67 views

CVE-2024-30886

Issue summary: CVE-2024-30886 is a stored XSS in HadSky v7.6.3, specifically in the remotelink function where an attacker can inject a crafted payload into the url parameter to execute arbitrary web scripts/HTML. Affected component: HadSky, version 7.6.3, remotelink functionality. Root cause & im...

5.4CVSS5.6AI score0.00325EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/23 12:0 a.m.5 views

PT-2024-23658 · Hadsky · Hadsky

Name of the Vulnerable Software and Affected Versions: HadSky version 7.6.3 Description: A stored cross-site scripting XSS issue in the remotelink function allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter. Recommendations: For HadSky...

5.4CVSS5.5AI score0.00325EPSS
Exploits1References3
OSV
OSV
added 2024/04/11 5:15 a.m.5 views

CVE-2024-30885

Reflected Cross-Site Scripting XSS vulnerability in HadSky v7.6.3, allows remote attackers to execute arbitrary code and obtain sensitive information via the chklogin.php component...

6.1CVSS6.1AI score0.00495EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.4 views

HadSky 安全漏洞

HadSky is an original open source php lightweight forum system by the Chinese company HadSky. A security vulnerability exists in HadSky v7.6.3, which stems from a Reflective Cross-Site Scripting XSS vulnerability that allows remote attackers to execute arbitrary code and obtain sensitive...

6.1CVSS6.3AI score0.00495EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/04/11 12:0 a.m.4 views

PT-2024-23657 · Hadsky · Hadsky

Name of the Vulnerable Software and Affected Versions: HadSky version 7.6.3 Description: A Reflected Cross-Site Scripting XSS issue allows remote attackers to execute arbitrary code and obtain sensitive information via the chklogin.php component. Recommendations: For HadSky version 7.6.3, update ...

6.1CVSS7.1AI score0.00495EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/04/11 12:0 a.m.13 views

CVE-2024-30885

Reflected Cross-Site Scripting XSS vulnerability in HadSky v7.6.3, allows remote attackers to execute arbitrary code and obtain sensitive information via the chklogin.php component...

6.3AI score0.00495EPSS
Exploits1References1
Rows per page
Query Builder