Lucene search
+L

54 matches found

redhatcve
redhatcve
added 2025/11/28 9:10 a.m.14 views

CVE-2025-66360

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service Redis information to li-admin users. This can lead to privilege escalation...

8.8CVSS6.7AI score0.00258EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/28 9:10 a.m.11 views

CVE-2025-66359

An issue was discovered in Logpoint before 7.7.0. Insufficient input validation and a lack of output escaping in multiple components leads to a cross-site scripting XSS vulnerability...

8.5CVSS6AI score0.0016EPSS
Exploits0References1
euvd
euvd
added 2025/11/28 12:30 a.m.6 views

EUVD-2025-199837

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service Redis information to li-admin users. This can lead to privilege escalation...

6.9CVSS6.2AI score0.00258EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52976

Malicious code in bioql PyPI...

5.9CVSS6.6AI score0.00288EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.13 views

EUVD-2024-52978

Malicious code in bioql PyPI...

5.9CVSS6.6AI score0.00288EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51380

Malicious code in bioql PyPI...

7.7CVSS6.6AI score0.00166EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-52975

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00317EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-51379

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00639EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-26856

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00307EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22034

Malicious code in bioql PyPI...

8.4CVSS6.6AI score0.0062EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-22033

Malicious code in bioql PyPI...

4.9CVSS6.6AI score0.00206EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/07/22 12:0 a.m.14 views

CVE-2025-54317

An issue was discovered in Logpoint before 7.6.0. An attacker with operator privileges can exploit a path traversal vulnerability when creating a Layout Template, which can lead to remote code execution RCE...

8.4CVSS7.4AI score0.0062EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/07/22 12:0 a.m.14 views

CVE-2025-54316

An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting...

4.9CVSS5.1AI score0.00206EPSS
Exploits0References1
nvd
nvd
added 2025/07/20 7:15 p.m.10 views

CVE-2025-54317

An issue was discovered in Logpoint before 7.6.0. An attacker with operator privileges can exploit a path traversal vulnerability when creating a Layout Template, which can lead to remote code execution RCE...

8.4CVSS0.0062EPSS
Exploits0References2
nvd
nvd
added 2025/07/20 7:15 p.m.9 views

CVE-2025-54316

An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting...

4.9CVSS0.00206EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/07/20 12:0 a.m.3 views

Logpoint 跨站脚本漏洞

Logpoint is a network security application from Logpoint Denmark. A cross-site scripting vulnerability exists in Logpoint versions prior to 7.6.0, which stems from a failure to validate a Jinja template when creating a report, and could lead to a cross-site scripting attack...

4.9CVSS6AI score0.00206EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/07/20 12:0 a.m.4 views

CVE-2025-54317

An issue was discovered in Logpoint before 7.6.0. An attacker with operator privileges can exploit a path traversal vulnerability when creating a Layout Template, which can lead to remote code execution RCE...

8.4CVSS7.2AI score0.0062EPSS
Exploits0References2
cve
cve
added 2025/07/20 12:0 a.m.20 views

CVE-2025-54317

CVE-2025-54317 affects Logpoint prior to 7.6.0. A path traversal vulnerability in the creation of a Layout Template can be exploited by an attacker with operator privileges to achieve remote code execution (RCE). The issue is documented across multiple sources (e.g., Red Hat, CVE databases, PT Se...

8.4CVSS8AI score0.0062EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/07/20 12:0 a.m.5 views

PT-2025-30213 · Logpoint · Logpoint

Name of the Vulnerable Software and Affected Versions: Logpoint versions prior to 7.6.0 Description: An issue exists in Logpoint that allows attackers to create custom Jinja templates when creating reports. By chaining built-in filter functions within these templates, attackers can generate...

4.9CVSS5.1AI score0.00206EPSS
Exploits0References7
vulnrichment
vulnrichment
added 2025/07/20 12:0 a.m.4 views

CVE-2025-54316

An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting...

4.9CVSS5AI score0.00206EPSS
Exploits0References2
Rows per page
Query Builder