Lucene search
K

365 matches found

vulnersOsv
vulnersOsv
added 2026/04/21 12:0 a.m.10 views

ch.admin.bit.jeap:jeap-oauth-mock-server (>=3.1.0 <=3.44.0), ch.admin.bit.jeap:jeap-oauth-mock-server-instance (>=3.1.0 <=3.44.0) +79 more potentially affected by CVE-2026-22752 via org.springframework.security:spring-security-oauth2-authorization-server (>=1.3.0 <=1.5.6)

org.springframework.security:spring-security-oauth2-authorization-server MAVEN version =1.3.0, =3.1.0, =3.1.0, =1.0.0, =1.0.1, =1.0.0, =3.0.0, =3.5.5.3, =3.5.5.3, =3.3.0.0, =3.5.5.3, =3.5.5.3, =3.5.5.3, =3.3.0.0, =3.3.0.0, =3.5.5.2 and more Source cves: CVE-2026-22752 Source advisory:...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.8 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013324)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013324 advisory. In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov772x: Fix memleak in ov772xprobe A memory leak was reported when testing ov772x wit...

5.5CVSS5.7AI score0.00185EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/04/13 5:36 a.m.118 views

Bluetooth-app

Bluetooth Security Testing App A Kivy-based Android applicati...

5.8AI score
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/02 7:19 p.m.5 views

CVE-2026-34932 hoppscotch: Stored XSS via mock server responses on backend origin

hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, there is a stored XSS vulnerability that can lead to CSRF. This issue has been patched in version 2026.3.0...

8.5CVSS5.8AI score0.00288EPSS
Exploits0References2
CVE
CVE
added 2026/04/02 7:19 p.m.11 views

CVE-2026-34932

CVE-2026-34932 affects Hoppscotch (open source API development ecosystem). Before version 2026.3.0, a stored XSS vulnerability could lead to CSRF. The issue has been patched in version 2026.3.0. Reported impact in multiple feeds includes high/severe risk (CVSS v3.1: critical with network attack, ...

9.3CVSS5.8AI score0.00288EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/02 7:19 p.m.20 views

CVE-2026-34932 hoppscotch: Stored XSS via mock server responses on backend origin

hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, there is a stored XSS vulnerability that can lead to CSRF. This issue has been patched in version 2026.3.0...

8.5CVSS0.00288EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

MOCK Business::OnlinePayment::StoredTransaction 安全漏洞

MOCK Business::OnlinePayment::StoredTransaction is a module of MOCK Corporation designed for processing stored transaction data and executing online payment processes. Versions of Business::OnlinePayment::StoredTransaction prior to 0.01 contain security vulnerabilities. These vulnerabilities stem...

9.1CVSS5.8AI score0.00328EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/29 11:3 p.m.6 views

CVE-2026-5016

A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly availabl...

7.5CVSS5.6AI score0.003EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/29 12:31 a.m.3 views

EUVD-2026-16951

A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly availabl...

7.5CVSS5.6AI score0.003EPSS
Exploits0References6
NVD
NVD
added 2026/03/28 10:15 p.m.6 views

CVE-2026-5016

A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly availabl...

7.5CVSS0.003EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/28 9:45 p.m.32 views

CVE-2026-5016 elecV2 elecV2P URL mock eAxios server-side request forgery

A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly availabl...

7.5CVSS0.003EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/28 9:45 p.m.1 views

CVE-2026-5016 elecV2 elecV2P URL mock eAxios server-side request forgery

A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly availabl...

7.5CVSS5.6AI score0.003EPSS
Exploits0References5
CVE
CVE
added 2026/03/28 9:45 p.m.10 views

CVE-2026-5016

CVE-2026-5016 affects elecV2 elecV2P up to 3.8.3. The vulnerability lies in the eAxios function in the /mock/URL Handler, where improper handling of the req argument allows server-side request forgery (SSRF). Exploitation is possible remotely, and a public exploit exists. The project was alerted ...

7.5CVSS6.8AI score0.003EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/28 9:45 p.m.1 views

CVE-2026-5016

A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly availabl...

7.5CVSS6.8AI score0.003EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/28 12:0 a.m.7 views

PT-2026-28730

Name of the Vulnerable Software and Affected Versions elecV2 elecV2P versions through 3.8.3 Description A server-side request forgery condition exists due to manipulation of the req argument within the eAxios function located in the /mock file of the URL Handler component. This allows for remote...

7.5CVSS5.8AI score0.003EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/24 4:2 p.m.8 views

Malicious code in typescript-mock-data (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a51f9143ac378f3ef81840f6858a902bd37449fa9b93b0999e021321ddafac The package typescript-mock-data was found to contain malicious code...

5.9AI score
Exploits0
OSV
OSV
added 2026/03/24 4:2 p.m.7 views

MAL-2026-2394 Malicious code in typescript-mock-data (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a51f9143ac378f3ef81840f6858a902bd37449fa9b93b0999e021321ddafac The package typescript-mock-data was found to contain malicious code...

5.8AI score
Exploits0
Snyk
Snyk
added 2026/03/03 6:50 a.m.4 views

Malicious Package

Overview chai-as-mock is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2026/03/03 6:50 a.m.4 views

MAL-2026-1191 Malicious code in chai-as-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 303ff6a2f2561ea67c1d084cbfc1ebdd5364668aab3d06257cb2cbeea42ce5a3 The package chai-as-mock was found to contain malicious code. Source: ghsa-malware 6ab0e6eb41241ac06a623d9e7fa230c2d68067904fd48aa422ab8c2db1cd23e4 A...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/03 6:50 a.m.9 views

Malicious code in chai-as-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 303ff6a2f2561ea67c1d084cbfc1ebdd5364668aab3d06257cb2cbeea42ce5a3 The package chai-as-mock was found to contain malicious code. Source: ghsa-malware 6ab0e6eb41241ac06a623d9e7fa230c2d68067904fd48aa422ab8c2db1cd23e4 A...

5.7AI score
Exploits0References1
Rows per page
Query Builder