Lucene search
+L

194 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2020-5420

Malware in sbrugna...

8.8CVSS9.1AI score0.10963EPSS
Exploits7References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-11056

Malware in sbrugna...

6.1CVSS6.3AI score0.0041EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-11057

Malware in sbrugna...

6.1CVSS6.3AI score0.0049EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-9497

Malware in sbrugna...

7.2CVSS7AI score0.01165EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-25610

Malware in sbrugna...

6.1CVSS6.3AI score0.00624EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-39195

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00331EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-0127

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00384EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-53406

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.02301EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-40448

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00511EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-46125

Malicious code in bioql PyPI...

7.1CVSS8.6AI score0.0032EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28136

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00373EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-19785

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00574EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:30 p.m.22 views

CVE-2025-47942

The Open edX Platform is a learning management platform. Prior to commit 6740e75c0fdc7ba095baf88e9f5e4f3e15cfd8ba, edxapp has no built-in protection against downloading the pythonlib.zip asset from courses, which is a concern since it often contains custom grading code or answers to course...

5.3CVSS6.9AI score0.00373EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:52 a.m.8 views

CVE-2024-41806

The Open edX Platform is a learning management platform. Instructors can upload csv files containing learner information to create cohorts in the instructor dashboard. These files are uploaded using the django default storage. With certain storage backends, uploads may become publicly available...

5.3CVSS6.7AI score0.00331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:33 a.m.14 views

CVE-2024-22209

Open edX Platform is a service-oriented platform for authoring and delivering online learning. A user with a JWT and more limited scopes could call endpoints exceeding their access. This vulnerability has been patched in commit 019888f...

8.8CVSS6.9AI score0.00574EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:24 a.m.8 views

CVE-2022-32195

Open edX platform before 2022-06-06 allows XSS via the "next" parameter in the logout URL...

6.1CVSS5.8AI score0.02301EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:12 p.m.10 views

CVE-2021-39248

Open edX through Lilac.1 allows XSS in common/static/common/js/discussion/utils.js via crafted LaTeX content within a discussion...

6.1CVSS6AI score0.00624EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:9 p.m.8 views

CVE-2020-13145

Studio in Open edX Ironwood 2.5 allows users to upload SVG files via the "ContentFile Uploads" screen. These files can contain JavaScript code and thus lead to Stored XSS...

5.4CVSS6.9AI score0.00531EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 p.m.10 views

CVE-2020-13144

Studio in Open edX Ironwood 2.5, when CodeJail is not used, allows a user to go to the "Create New courseNew sectionNew subsectionNew unitAdd new componentProblem buttonAdvanced tabCustom Python evaluated code" screen, edit the problem, and execute Python code. This leads to arbitrary code...

8.8CVSS7.4AI score0.10963EPSS
Exploits7
RedhatCVE
RedhatCVE
added 2025/05/22 3:49 p.m.9 views

CVE-2020-13146

Studio in Open edX Ironwood 2.5 allows CSV injection because an added cohort in CourseInstructorCohorts may contain a formula that is exported via the "CourseData DownloadsReportsDownload profile info" feature...

8.8CVSS7.2AI score0.0109EPSS
Exploits1
Rows per page
Query Builder