Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-27584

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00057EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2024-27581

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00078EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2024-27583

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00098EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2024-27582

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00098EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-27585

Malicious code in bioql PyPI...

9CVSS6.6AI score0.0009EPSS
Exploits0References1
NVD
NVDadded 2024/03/19 1:15 p.m.6 views

CVE-2024-2636

An Unrestricted Upload of File vulnerability has been found on Cegid Meta4 HR, that allows an attacker to upload malicios files to the server via '/config/espanol/updatepassword.jsp' file. Modifying the 'M4NEWPASSWORD' parameter, an attacker could store a malicious JSP file inside the file...

9CVSS9AI score0.0009EPSS
Exploits0References1
NVD
NVDadded 2024/03/19 12:15 p.m.3 views

CVE-2024-2634

A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/ssegenerico/genericologin.jsp' is vulnerable to XSS attack via 'lang' query, i.e. '/ssegenerico/genericologin.jsp?lang=%27%3balert%27BLEUSS%27%2f%2f&params='...

6.1CVSS5.9AI score0.00098EPSS
Exploits0References1
NVD
NVDadded 2024/03/19 12:15 p.m.6 views

CVE-2024-2632

A Information Exposure Vulnerability has been found on Meta4 HR. This vulnerability allows an attacker to obtain a lot of information about the application such as the variables set in the process, the Tomcat versions, library versions and underlying operation system via HTTP GET...

7.5CVSS7.2AI score0.00078EPSS
Exploits0References1
NVD
NVDadded 2024/03/19 12:15 p.m.6 views

CVE-2024-2633

A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/sitetest/english/dumpenv.jsp' is vulnerable to XSS attack by 'lang' query, i.e. '/sitetest/english/dumpenv.jsp?snoop=yes&lang=%27%3Cimg%20src/onerror=alert1%3E&params'...

6.1CVSS5.9AI score0.00098EPSS
Exploits0References1
NVD
NVDadded 2024/03/19 12:15 p.m.6 views

CVE-2024-2635

The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client, who can be an attacker. Instead of rewriting these pages to avoid this vulnerability, they will be dismissed from future releases of Cegid Meta4 HR, as they d...

7.3CVSS7.2AI score0.00057EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/03/19 12:12 p.m.8 views

CVE-2024-2636 Multiple vulnerabilities on Meta4 HR from Cegid

An Unrestricted Upload of File vulnerability has been found on Cegid Meta4 HR, that allows an attacker to upload malicios files to the server via '/config/espanol/updatepassword.jsp' file. Modifying the 'M4NEWPASSWORD' parameter, an attacker could store a malicious JSP file inside the file...

9CVSS6.8AI score0.0009EPSS
Exploits0References1
CVE
CVEadded 2024/03/19 12:12 p.m.47 views

CVE-2024-2636

The CVE-2024-2636 issue affects Cegid Meta4 HR and is an Unrestricted Upload of File vulnerability. An attacker can upload malicious files via the path /config/espanol/update_password.jsp by modifying the M4_NEW_PASSWORD parameter, enabling a potentially executed JSP file when loaded by the appli...

9CVSS9.1AI score0.0009EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/03/19 12:12 p.m.15 views

CVE-2024-2636 Multiple vulnerabilities on Meta4 HR from Cegid

An Unrestricted Upload of File vulnerability has been found on Cegid Meta4 HR, that allows an attacker to upload malicios files to the server via '/config/espanol/updatepassword.jsp' file. Modifying the 'M4NEWPASSWORD' parameter, an attacker could store a malicious JSP file inside the file...

9CVSS9.2AI score0.0009EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/03/19 12:9 p.m.8 views

CVE-2024-2635 Multiple vulnerabilities on Meta4 HR from Cegid

The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client, who can be an attacker. Instead of rewriting these pages to avoid this vulnerability, they will be dismissed from future releases of Cegid Meta4 HR, as they d...

7.3CVSS6.9AI score0.00057EPSS
Exploits0References1
CVE
CVEadded 2024/03/19 12:9 p.m.53 views

CVE-2024-2635

CVE-2024-2635 affects Cegid Meta4 HR. The root issue is that configuration pages are exposed on an Internet-facing web server, revealing file paths to the client. This is described as a vulnerability in the product’s configuration pages, with a CVSS 3.1 base score of 7.3 ( NETWORK, LOW complexity...

7.3CVSS7.2AI score0.00057EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/03/19 12:9 p.m.12 views

CVE-2024-2635 Multiple vulnerabilities on Meta4 HR from Cegid

The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client, who can be an attacker. Instead of rewriting these pages to avoid this vulnerability, they will be dismissed from future releases of Cegid Meta4 HR, as they d...

7.3CVSS7.4AI score0.00057EPSS
Exploits0References1
CVE
CVEadded 2024/03/19 12:8 p.m.39 views

CVE-2024-2634

CVE-2024-2634 concerns Meta4 HR (Cegid) where versions up to 819.001.022 are affected by a Cross-Site Scripting (XSS) vulnerability in the endpoint /sse_generico/generico_login.jsp, exploitable via the lang query parameter (e.g., /sse_generico/generico_login.jsp?lang=%27%3balert(%27BLEUSS%27)%2f%...

6.1CVSS5.9AI score0.00098EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/03/19 12:8 p.m.11 views

CVE-2024-2634 Multiple vulnerabilities on Meta4 HR from Cegid

A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/ssegenerico/genericologin.jsp' is vulnerable to XSS attack via 'lang' query, i.e. '/ssegenerico/genericologin.jsp?lang=%27%3balert%27BLEUSS%27%2f%2f&params='...

6.1CVSS6AI score0.00098EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/03/19 12:8 p.m.9 views

CVE-2024-2634 Multiple vulnerabilities on Meta4 HR from Cegid

A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/ssegenerico/genericologin.jsp' is vulnerable to XSS attack via 'lang' query, i.e. '/ssegenerico/genericologin.jsp?lang=%27%3balert%27BLEUSS%27%2f%2f&params='...

6.1CVSS6AI score0.00098EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/03/19 12:3 p.m.10 views

CVE-2024-2633 Multiple vulnerabilities on Meta4 HR from Cegid

A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/sitetest/english/dumpenv.jsp' is vulnerable to XSS attack by 'lang' query, i.e. '/sitetest/english/dumpenv.jsp?snoop=yes&lang=%27%3Cimg%20src/onerror=alert1%3E&params'...

6.1CVSS6AI score0.00098EPSS
Exploits0References1
Rows per page
Query Builder