Lucene search
K

165 matches found

NVD
NVD
added 2025/10/08 8:15 a.m.5 views

CVE-2025-11443

A weakness has been identified in JhumanJ OpnForm up to 1.9.3. This affects an unknown function of the file /api/password/email of the component Forgotten Password Handler. This manipulation causes information exposure through discrepancy. It is possible to initiate the attack remotely. The attac...

6.3CVSS0.00522EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/10/08 12:0 a.m.4 views

PT-2025-41239

Name of the Vulnerable Software and Affected Versions JhumanJ OpnForm versions up to 1.9.3 Description A weakness exists in JhumanJ OpnForm, potentially leading to information exposure. The issue stems from a discrepancy within the Forgotten Password Handler component, specifically related to the...

6.3CVSS4.3AI score0.00522EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-29107

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00357EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0765

Malicious code in bioql PyPI...

6.5CVSS4.9AI score0.00387EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-47322

Malicious code in bioql PyPI...

6.9CVSS4.9AI score0.00415EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-32265

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.01284EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-11470

Malicious code in bioql PyPI...

8.2CVSS5.5AI score0.08042EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1993

Malicious code in bioql PyPI...

3.1CVSS4.1AI score0.00276EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-24135

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00708EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-2125

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.0033EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10027

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00368EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-2127

Malicious code in bioql PyPI...

4.5CVSS4.8AI score0.03305EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/16 4:32 a.m.18 views

CVE-2025-10389

A security flaw has been discovered in CRMEB up to 5.6.1. Impacted is the function Save of the file app/services/system/admin/SystemAdminServices.php of the component Administrator Password Handler. Performing manipulation of the argument ID results in improper authorization. The attack may be...

5.5CVSS6.6AI score0.00357EPSS
Exploits0References1
OSV
OSV
added 2025/09/14 4:15 a.m.4 views

CVE-2025-10389

A security flaw has been discovered in CRMEB up to 5.6.1. Impacted is the function Save of the file app/services/system/admin/SystemAdminServices.php of the component Administrator Password Handler. Performing manipulation of the argument ID results in improper authorization. The attack may be...

8.8CVSS6.8AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/14 12:0 a.m.5 views

PT-2025-37399

Name of the Vulnerable Software and Affected Versions: CRMEB versions up to 5.6.1 Description: A security flaw exists in CRMEB due to improper authorization when manipulating the ID argument within the Save function of the app/services/system/admin/SystemAdminServices.php file, specifically in th...

5.5CVSS4.9AI score0.00357EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/09/14 12:0 a.m.6 views

CRMEB 授权问题漏洞

CRMEB is a Java mall system of CRMEB open source. An authorization issue vulnerability exists in CRMEB 5.6.1 and earlier versions, which stems from incorrect manipulation of the parameter ID of the component Administrator Password Handler in the file...

8.8CVSS5.3AI score0.00357EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-1369

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the...

4.5CVSS5AI score0.03305EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/06/30 12:0 a.m.4 views

PT-2025-27483 · D Link · D-Link Dcs-7517

Name of the Vulnerable Software and Affected Versions: D-Link DCS-7517 versions up to 2.02.0 Description: A vulnerability was found in the Qlync Password Generation Handler component, affecting the function g F n GenPassForQlync of the file /bin/httpd. The manipulation leads to the use of...

6.3CVSS3.9AI score0.00866EPSS
Exploits1References11
NVD
NVD
added 2025/06/16 12:15 a.m.14 views

CVE-2025-6097

A vulnerability was found in UTT 进取 750W up to 5.0 and classified as critical. Affected by this issue is the function formDefineManagement of the file /goform/setSysAdm of the component Administrator Password Handler. The manipulation of the argument passwd1 leads to unverified password change. T...

9.8CVSS0.00577EPSS
Exploits1References5
OSV
OSV
added 2025/06/16 12:15 a.m.2 views

CVE-2025-6097

A vulnerability was found in UTT 进取 750W up to 5.0 and classified as critical. Affected by this issue is the function formDefineManagement of the file /goform/setSysAdm of the component Administrator Password Handler. The manipulation of the argument passwd1 leads to unverified password change. T...

9.8CVSS5.3AI score0.00577EPSS
Exploits1References5
Rows per page
Query Builder