Lucene search
K

385 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-6609

Malware in sbrugna...

6.5CVSS6.3AI score0.0195EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2499

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00344EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3446

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00642EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-1100

Malicious code in bioql PyPI...

2.7CVSS3.9AI score0.00502EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-14348

Malicious code in bioql PyPI...

7.9CVSS6.4AI score0.00142EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-33778

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00524EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31662

Malicious code in bioql PyPI...

6.7CVSS6.6AI score0.00262EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-45617

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00384EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/30 11:47 p.m.9 views

CVE-2025-59950

FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.3 and below, due to a bypass of double clickjacking protection confirmation dialog, it is possible to trick the admin into clicking the Promote button in another user's management page after the admin double clicks on a button...

6.7CVSS6.7AI score0.00262EPSS
Exploits1References1
NVD
NVD
added 2025/09/30 4:43 a.m.6 views

CVE-2025-59950

FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.3 and below, due to a bypass of double clickjacking protection confirmation dialog, it is possible to trick the admin into clicking the Promote button in another user's management page after the admin double clicks on a button...

6.7CVSS0.00262EPSS
Exploits1References3
OSV
OSV
added 2025/09/29 11:21 p.m.5 views

CVE-2025-59950 FreshRSS: Double clickjacking can lead to privilege escalation

FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.3 and below, due to a bypass of double clickjacking protection confirmation dialog, it is possible to trick the admin into clicking the Promote button in another user's management page after the admin double clicks on a button...

6.7CVSS6.7AI score0.00262EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/09/29 11:21 p.m.8 views

CVE-2025-59950 FreshRSS: Double clickjacking can lead to privilege escalation

FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.3 and below, due to a bypass of double clickjacking protection confirmation dialog, it is possible to trick the admin into clicking the Promote button in another user's management page after the admin double clicks on a button...

6.7CVSS0.00262EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/09/29 11:21 p.m.3 views

CVE-2025-59950 FreshRSS: Double clickjacking can lead to privilege escalation

FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.3 and below, due to a bypass of double clickjacking protection confirmation dialog, it is possible to trick the admin into clicking the Promote button in another user's management page after the admin double clicks on a button...

6.7CVSS6.4AI score0.00262EPSS
Exploits1References3
CVE
CVE
added 2025/09/29 11:21 p.m.18 views

CVE-2025-59950

FreshRSS

6.7CVSS6.4AI score0.00262EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.6 views

PT-2025-39920

Name of the Vulnerable Software and Affected Versions FreshRSS versions 1.26.3 and below Description FreshRSS is susceptible to a double clickjacking protection bypass. An attacker can trick an administrator into promoting themselves to "admin" and logging into other users' accounts. This is...

6.7CVSS6.6AI score0.00262EPSS
Exploits1References9
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/26 4:46 a.m.3 views

Malicious code in pc-analytics-promotion-creation-core (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9292e3bed279b8b99bcdac22deaa003418229efa19faeb2633583bc389307242 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References3
OSV
OSV
added 2025/09/24 7:15 a.m.1 views

MAL-2025-47856 Malicious code in pc-analytics-promotion-creation-client (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f4d66ab8f0d38376b6ec23e7703446b3c1d3849127ae2eb86050e41db25563bc Any computer that has this package installed or running should be considered...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-18421

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and...

7.5CVSS6.9AI score0.01679EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/08/13 6:57 a.m.2 views

Security update for slurm

This update for slurm fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

8.5CVSS6.8AI score0.00244EPSS
Exploits0References4
OSV
OSV
added 2025/08/13 6:57 a.m.5 views

SUSE-SU-2025:02779-1 Security update for slurm

This update for slurm fixes the following issues: - CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666...

4.2CVSS7AI score0.00244EPSS
Exploits0References3
Rows per page
Query Builder