Lucene search
+L

92 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-20356

Malware in sbrugna...

5.4CVSS6AI score0.00473EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-14879

Malware in sbrugna...

10CVSS9.5AI score0.02306EPSS
Exploits0References3
cvelist
cvelist
added 2025/10/06 1:32 p.m.12 views

CVE-2025-11337 Four-Faith Water Conservancy Informatization Platform download.do;othersusrlogout.do path traversal

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...

6.9CVSS0.0064EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-27110

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00296EPSS
Exploits1References4
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-29851

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00325EPSS
Exploits1References5
redhatcve
redhatcve
added 2025/09/24 11:24 p.m.14 views

CVE-2025-10819

A security vulnerability has been detected in fuyanglipengjun platform 1.0. This issue affects the function UserCouponController of the file /usercoupon/queryAll. The manipulation leads to improper authorization. Remote exploitation of the attack is possible. The exploit has been disclosed public...

5.3CVSS4.5AI score0.00336EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2025/09/03 11:2 p.m.2 views

CVE-2025-9936 fuyang_lipengjun platform queryAll AdController improper authorization

A vulnerability was identified in fuyanglipengjun platform 1.0.0. This issue affects the function AdController of the file /ad/queryAll. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available and might be used...

5.3CVSS6.6AI score0.00325EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2025/08/21 4:19 p.m.2 views

CVE-2025-43756

A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.15, 2025.Q2.0 through 2025.Q2.2 and 2024.Q1.13 through 2024.Q1.19 allows a remote authenticated user to inject JavaScript code via snippet parameter...

6.9CVSS5.7AI score0.00199EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/08/21 12:0 a.m.7 views

PT-2025-34270 · Unknown · Aikaan Iot Management Platform

Name of the Vulnerable Software and Affected Versions: Aikaan IoT management platform version 3.25.0325-5-g2e9c59796 Description: The Aikaan IoT management platform allows unauthenticated users to register accounts via APIs, even when user sign-up is disabled through the user interface. This...

9.8CVSS7.2AI score0.00538EPSS
Exploits0References6
redhatcve
redhatcve
added 2025/08/17 11:11 p.m.8 views

CVE-2025-52619

HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure. Under certain conditions, error messages disclose sensitive version information about the underlying platform...

5.3CVSS6.6AI score0.00258EPSS
Exploits0References1
osv
osv
added 2025/08/15 11:15 p.m.4 views

CVE-2025-52619

HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure. Under certain conditions, error messages disclose sensitive version information about the underlying platform...

5.3CVSS5.7AI score0.00258EPSS
Exploits0References1
nvd
nvd
added 2025/08/15 11:15 p.m.7 views

CVE-2025-52619

HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure. Under certain conditions, error messages disclose sensitive version information about the underlying platform...

5.3CVSS0.00258EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/15 10:48 p.m.5 views

CVE-2025-52619 HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure

HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure. Under certain conditions, error messages disclose sensitive version information about the underlying platform...

5.3CVSS5.8AI score0.00258EPSS
Exploits0References1
cvelist
cvelist
added 2025/08/15 10:48 p.m.11 views

CVE-2025-52619 HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure

HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure. Under certain conditions, error messages disclose sensitive version information about the underlying platform...

5.3CVSS0.00258EPSS
Exploits0References1
cve
cve
added 2025/08/15 10:48 p.m.20 views

CVE-2025-52619

HCL BigFix SaaS Authentication Service is affected by CVE-2025-52619, which discloses sensitive platform version information via error messages. Affected component: HCL BigFix SaaS Authentication Service. Root cause: error messages reveal underlying platform version details under certain conditio...

5.3CVSS6.5AI score0.00258EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/08/09 9:2 p.m.54 views

CVE-2025-8775 Qiyuesuo Eelectronic Signature Platform Scheduled Task upload execute unrestricted upload

A vulnerability was found in Qiyuesuo Eelectronic Signature Platform up to 4.34 and classified as critical. Affected by this issue is the function execute of the file /api/code/upload of the component Scheduled Task Handler. The manipulation of the argument File leads to unrestricted upload. The...

6.5CVSS0.0041EPSS
Exploits1References5
nvd
nvd
added 2025/08/09 8:15 p.m.6 views

CVE-2025-8773

A vulnerability, which was classified as critical, was found in Dinstar Monitoring Platform 甘肃省危险品库监控平台 1.0. Affected is an unknown function of the file /itc/$%7BappPath%7D/logingetPasswordErrorNum.action. The manipulation of the argument userBean.loginName leads to sql injection. It is possible ...

9.8CVSS0.0061EPSS
Exploits1References4
cnnvd
cnnvd
added 2025/06/02 12:0 a.m.4 views

Carestream Health Clinical Collaboration Platform 安全漏洞

Carestream Health Clinical Collaboration Platform is a clinical assistance platform from Carestream Health, USA. A security vulnerability exists in Carestream Health Clinical Collaboration Platform version 12.2.1.5, which stems from a weak logout system and could lead to accessing sensitive...

6.5CVSS6.6AI score0.0029EPSS
Exploits0References3
openvas
openvas
added 2025/05/27 12:0 a.m.7 views

Microsoft VP9 Video Extensions Multiple Vulnerabilities (May 2025) - Windows

Microsoft VP9 Video Extensions is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7AI score0.02487EPSS
Exploits0References2
cve
cve
added 2025/04/27 12:0 a.m.63 views

CVE-2025-46689

CVE-2025-46689 affects Ververica Platform 2.14.0 with a Reflected XSS vulnerability exposed via the URI path namespaces/default/formats . The issue involves user-controlled input in that path, allowing an attacker to trigger script execution in a victim’s browser when the vulnerable page is loade...

6.1CVSS5.5AI score0.00232EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder