Lucene search
K

531 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-3209

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00391EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-3186

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00391EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-3192

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00413EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-3180

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00391EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-3252

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00391EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/06/08 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-41599

An issue in the component /common/DownController.java of JFinalCMS v5.0.0 allows attackers to execute a directory traversal...

5.3CVSS5.9AI score0.11215EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:33 a.m.13 views

CVE-2024-8782

A vulnerability was found in JFinalCMS up to 1.0. It has been rated as critical. This issue affects the function delete of the file /admin/template/edit. The manipulation of the argument name leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the publ...

9.8CVSS7AI score0.00725EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:57 a.m.12 views

CVE-2024-24375

SQL injection vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to obtain sensitive information via /admin/admin name parameter...

7.5CVSS7.3AI score0.00485EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:38 a.m.12 views

CVE-2024-24029

JFinalCMS 5.0.0 is vulnerable to SQL injection via /admin/content/data...

9.8CVSS9.8AI score0.00761EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:35 a.m.7 views

CVE-2024-22496

Cross Site Scripting XSS vulnerability in JFinalcms 5.0.0 allows attackers to run arbitrary code via the /admin/login username parameter...

6.1CVSS6AI score0.00435EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:35 a.m.7 views

CVE-2024-22492

A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save contact parameter, which allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.2AI score0.00556EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:35 a.m.9 views

CVE-2024-22494

A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save mobile parameter, which allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.2AI score0.00466EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:34 a.m.15 views

CVE-2024-22493

A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save content parameter, which allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.2AI score0.00556EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:34 a.m.9 views

CVE-2024-22497

Cross Site Scripting XSS vulnerability in /admin/login password parameter in JFinalcms 5.0.0 allows attackers to run arbitrary code via crafted URL...

6.1CVSS6.1AI score0.00435EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:26 a.m.12 views

CVE-2024-12351

A vulnerability classified as critical has been found in JFinalCMS 1.0. This affects the function findPage of the file src\main\java\com\cms\entity\ContentModel.java of the component File Content Handler. The manipulation of the argument name leads to sql injection. It is possible to initiate the...

8.8CVSS7.4AI score0.00517EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:6 a.m.3 views

CVE-2024-5379

A vulnerability was found in JFinalCMS up to 20240111. It has been rated as problematic. This issue affects some unknown processing of the file /admin/template. The manipulation of the argument directory leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

5.4CVSS5.9AI score0.00368EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:5 a.m.4 views

CVE-2024-5310

A vulnerability classified as problematic has been found in JFinalCMS up to 20221020. This affects an unknown part of the file /admin/content. The manipulation of the argument Title leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to th...

5.4CVSS5.9AI score0.00364EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:12 a.m.12 views

CVE-2024-12349

A vulnerability was found in JFinalCMS 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/tag/save. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the...

8.8CVSS8.7AI score0.00359EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:45 a.m.7 views

CVE-2024-40322

An issue was discovered in JFinalCMS v.5.0.0. There is a SQL injection vulnerablity via /admin/divdata/data...

8.8CVSS9AI score0.00433EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:29 a.m.8 views

CVE-2024-57665

JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The cause of the vulnerability is that the title parameter is controllable and is concatenated directly into filterSql without filtering...

9.8CVSS9.8AI score0.00477EPSS
Exploits1References1
Rows per page
Query Builder