Lucene search
K

256 matches found

Positive Technologies
Positive Technologies
added 2025/12/06 12:0 a.m.7 views

PT-2025-49339

The Application Passwords plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'reject url' parameter in all versions up to, and including, 0.1.3. This is due to insufficient input sanitization and output escaping on user supplied URLs, which allows javascript: URI schemes...

5.4CVSS5.7AI score0.0019EPSS
Exploits0References5
CVE
CVE
added 2025/10/17 3:48 p.m.25 views

CVE-2025-58747

CVE-2025-58747 affects Dify up to version 1.9.1, where the MCP OAuth flow passes the remote server’s authorization_url directly to window.open without validation, enabling arbitrary JavaScript execution (XSS) when a victim connects to a malicious MCP server. Affected component: MCP OAuth in Dify....

6.1CVSS6.3AI score0.05233EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/10/17 3:48 p.m.5 views

CVE-2025-58747 Dify MCP OAuth Flow Vulnerable to XSS

Dify is an LLM application development platform. In Dify versions through 1.9.1, the MCP OAuth component is vulnerable to cross-site scripting when a victim connects to an attacker-controlled remote MCP server. The vulnerability exists in the OAuth flow implementation where the authorizationurl...

5.1CVSS6.7AI score0.05233EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2009-3002

Malware in sbrugna...

4.3CVSS6.3AI score0.01073EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-0476

Malware in sbrugna...

4.3CVSS6.4AI score0.01941EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-0539

Malware in sbrugna...

4.3CVSS6.4AI score0.03917EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-0241

Malware in sbrugna...

4.3CVSS6.4AI score0.0118EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-1166

Malware in sbrugna...

5.4CVSS5.4AI score0.00795EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-3000

Malware in sbrugna...

4.3CVSS6.4AI score0.01062EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-2966

Malware in sbrugna...

4.3CVSS6.4AI score0.01275EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-0777

Malware in sbrugna...

6.8CVSS9.1AI score0.02494EPSS
Exploits0References55
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-3755

Malware in sbrugna...

4.3CVSS6.4AI score0.02526EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2009-1593

Malware in sbrugna...

9.3CVSS6.2AI score0.01623EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-1592

Malware in sbrugna...

9.3CVSS6.1AI score0.01736EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-1561

Malware in sbrugna...

6.1CVSS6.3AI score0.01009EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-1612

Malware in sbrugna...

9.3CVSS9.2AI score0.04471EPSS
Exploits2References18
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-35297

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00306EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-16398

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00387EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-16399

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00283EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-33525

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00537EPSS
Exploits0References6
Rows per page
Query Builder