4 matches found
EUVD-2024-54898
Malicious code in bioql PyPI...
PandoraNext-TokensTool 安全漏洞
PandoraNext-TokensTool is a management software for PandoraNext by Clivia Personal Developer! A security vulnerability exists in PandoraNext-TokensTool version 0.6.8 and earlier, which stems from the ability to bypass authentication to access the API...
CVE-2024-50641
Summary: CVE-2024-50641 affects PandoraNext-TokensTool ≤ 0.6.8, enabling authentication bypass to access the API without a token. The CVSS v3.1 base score is 8.1 (HIGH) with network access, high impact on confidentiality, integrity, and availability, and no privileges required. Connected sources ...
CVE-2024-50641
An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token...