Lucene search
+L

164 matches found

euvd
euvd
added 2026/02/24 12:1 a.m.8 views

EUVD-2025-207565

free5GC is an open-source project for 5th generation 5G mobile core networks. Versions up to and including 1.4.1 of the User Data Repository are affected by Improper Error Handling with Information Exposure. The NEF component reliably leaks internal parsing error details e.g., invalid character '...

8.7CVSS5.4AI score0.00348EPSS
Exploits1References4
cnnvd
cnnvd
added 2026/01/27 12:0 a.m.7 views

Ghost cross-site scripting vulnerabilities

Ghost is a hosting service developed by the Ghost open-source project. Versions of Ghost from 5.43.0 to 5.12.04, as well as 6.0.0 to 6.14.0, have a cross-site scripting vulnerability. This vulnerability arises because specially crafted links may execute JavaScript, potentially leading to account...

8.8CVSS5.7AI score0.00255EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/01/23 12:0 a.m.5 views

PCF security vulnerabilities

PCF is a policy control module developed under the open-source Free5GC project. Version 1.4.0 of PCF contains a security vulnerability, which stems from a null pointer dereferencing in the HandleDeletePoliciesPolAssoId function...

7.5CVSS5.8AI score0.00427EPSS
Exploits1References3
redhatcve
redhatcve
added 2026/01/09 8:42 a.m.8 views

CVE-2022-31004

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

7.5CVSS6.8AI score0.00916EPSS
Exploits1References1
cnnvd
cnnvd
added 2026/01/08 12:0 a.m.5 views

titra 安全漏洞

titra is an open source time tracking project by kromit. A security vulnerability exists in titra 0.99.49 and earlier versions , the vulnerability stems from a bulk assignment vulnerability in the API that allows authenticated users to bypass business logic controls by injecting arbitrary fields...

4.3CVSS6.6AI score0.00244EPSS
Exploits1References2
cnnvd
cnnvd
added 2025/12/01 12:0 a.m.5 views

WebStack-Guns 路径遍历漏洞

WebStack-Guns is Dana Keeling individual developer of an open source web site navigation website project , backend based on Guns and Springboot. WebStack-Guns 1.0 version of a path traversal vulnerability , the vulnerability stems from the file KaptchaController.java function renderPicture...

7.5CVSS5.8AI score0.00871EPSS
Exploits1References4
impervablog
impervablog
added 2025/10/07 4:55 p.m.11 views

Another Critical RCE Discovered in a Popular MCP Server

Artificial Intelligence development is moving faster than secure coding practices, and attackers are taking notice. Imperva Threat Research recently uncovered and disclosed a critical Remote Code Execution RCE vulnerability CVE-2025-53967 in the Framelink Figma MCP Server. This is just one exampl...

8CVSS9.1AI score0.07417EPSS
Exploits0
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-0944

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00669EPSS
Exploits1References4
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0515

Malicious code in bioql PyPI...

10CVSS9.1AI score0.02307EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-17467

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00374EPSS
Exploits1References5
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-38092

Malicious code in bioql PyPI...

8.9CVSS5.8AI score0.00394EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-8635

Malicious code in bioql PyPI...

5.8CVSS5.7AI score0.00736EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-40425

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00389EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-42704

Malicious code in bioql PyPI...

9.3CVSS6.6AI score0.00553EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-0617

Malicious code in bioql PyPI...

7.1CVSS7.2AI score0.00525EPSS
Exploits1References6
cnnvd
cnnvd
added 2025/09/11 12:0 a.m.7 views

Neo4j MCP Clients & Servers 安全漏洞

Neo4j MCP Clients & Servers is a protocol for managing large language model contexts in the Neo4j Contrib open source. A security vulnerability exists in Neo4j MCP Clients & Servers, which stems from a DNS rebinding vulnerability that could lead to bypassing same-origin policy protections and...

7.4CVSS6.4AI score0.00206EPSS
Exploits0References4
ossf
ossf
added 2025/08/13 9:30 p.m.6 views

Malicious code in verizon-media-open-source-project-protal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5effa09096e10b22706af0dd8301a46baa8c707c7979154017d0493e25abf88 The OpenSSF Package Analysis project identified 'verizon-media-open-source-project-protal' @ 2.0.1 npm as malicious. It is considered malicious...

7.2AI score
Exploits0
cnnvd
cnnvd
added 2025/07/26 12:0 a.m.7 views

DbGate 安全漏洞

DbGate is a database manager from the DbGate open source. A security vulnerability exists in DbGate 6.6.0 and earlier versions, which stems from insufficient file path validation and could lead to unauthorized file access...

8.3CVSS6.4AI score0.00407EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/07/25 12:0 a.m.7 views

1000 Projects ABC Courier Management System 注入漏洞

1000 Projects ABC Courier Management System is an open source courier management system from 1000 Projects. An injection vulnerability exists in version 1.0 of the 1000 Projects ABC Courier Management System, which is caused by a SQL injection due to incorrect operation of the parameter reciverna...

9.8CVSS7.8AI score0.00521EPSS
Exploits1References6
cnnvd
cnnvd
added 2025/07/18 12:0 a.m.4 views

melange 安全漏洞

melange is a Chainguard open source for building APKs from source code. A security vulnerability exists in melange versions prior to 0.23.0 through 0.29.5, which stems from improperly set permissions on the SBOM file, which could lead to a tampering attack...

4.4CVSS6.3AI score0.00125EPSS
Exploits0References8
Rows per page
Query Builder