Lucene search
K

18857 matches found

NVD
NVD
added 2025/11/13 7:15 p.m.8 views

CVE-2025-13123

A flaw has been found in AMTT Hotel Broadband Operation System 1.0. The impacted element is an unknown function of the file /user/portal/getfirstdate.php. Executing manipulation of the argument uid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS0.00303EPSS
Exploits1References4
OSV
OSV
added 2025/11/13 3:15 p.m.3 views

CVE-2025-13119

A flaw has been found in Fabian Ros/SourceCodester Simple E-Banking System 1.0. This affects an unknown part. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been published and may be used...

6.5CVSS5.5AI score0.00204EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/13 3:2 p.m.4 views

CVE-2025-13119 Fabian Ros/SourceCodester Simple E-Banking System cross-site request forgery

A flaw has been found in Fabian Ros/SourceCodester Simple E-Banking System 1.0. This affects an unknown part. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been published and may be used...

5.3CVSS6.2AI score0.00204EPSS
Exploits1References4
EUVD
EUVD
added 2025/11/13 3:2 p.m.5 views

EUVD-2025-175309

A flaw has been found in Fabian Ros/SourceCodester Simple E-Banking System 1.0. This affects an unknown part. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been published and may be used...

5.3CVSS4.5AI score0.00204EPSS
Exploits1References5
CVE
CVE
added 2025/11/13 3:2 p.m.15 views

CVE-2025-13119

CVE-2025-13119 affects Fabian Ros/SourceCodester Simple E-Banking System 1.0. A CSRF vulnerability is described as originating from an unknown part of the application; the attack can be initiated remotely and an exploit has been published. The available sources do not specify the exact affected c...

6.5CVSS4.8AI score0.00204EPSS
Exploits1References4Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.5 views

Malicious code in transform-ethology-weywot-style-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6827172d705088dbbceab6e5d571e982778c40522594d4b1769be2151dd4821 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.5 views

Malicious code in grep-fire-throw-web-sed (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebf7689d3d15f023a0d962a1dc51e8ad684feb14bbc8cc9a82f6b8716822f137 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.5 views

Malicious code in arcturus-flare-superagent-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80856987570a96a5084f2b7478d136db28ad9cfe56025418ec26135ba1b5aa9c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.7 views

Malicious code in deimos-polaris-gridsome-magellan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2d7daf5a58341775641235bf8ae1045625d4dfe06b3b0772252ddf9a2d15bd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.2 views

MAL-2025-187887 Malicious code in lynx-supervisor-relay-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a26f63e49cfb5c2e768202d61487c55e9c1f08c139bc67fda8a39c99da2c5ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/13 12:30 a.m.6 views

EUVD-2025-150358

A flaw has been found in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/usersetting.php. Executing manipulation of the argument usname can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be...

5.8CVSS4.8AI score0.00341EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.5 views

PT-2025-46834

A flaw has been found in Fabian Ros/SourceCodester Simple E-Banking System 1.0. This affects an unknown part. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been published and may be used...

5.3CVSS4.6AI score0.00204EPSS
Exploits1References5
OSV
OSV
added 2025/11/12 11:15 p.m.6 views

CVE-2025-13076

A flaw has been found in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/usersetting.php. Executing manipulation of the argument usname can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be...

9.8CVSS5.8AI score0.00341EPSS
Exploits1References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 10:25 p.m.5 views

Malicious code in oc-gua-vsi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f6e6123a645caf59e7fface4348da44fbaa41fed9627d4bdeb283124d759fa9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 10:25 p.m.4 views

Malicious code in lomi-ifush-ugikfobi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1c59755f297706751f06ce305a4d58f1833838102248274ef959b514a3e2f79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 10:25 p.m.2 views

MAL-2025-183689 Malicious code in manu-oi-gisoag1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcc0c5aa891c11a484208db8efd96d65e4793acfa80281f4998a530502ee5c4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 10:25 p.m.3 views

MAL-2025-185046 Malicious code in sonic-kots-fudvitifayaja (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88b2b0f61bf024128737dcbbe42e099d5be6e31d7ec8a43cf8316f8ef85b1114 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 10:25 p.m.2 views

MAL-2025-183084 Malicious code in item-at-labiozkapa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ab643c0de6a871c0567172d77c86766839f1c6c6cc949fc9cecc08a36be5c48 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
NVD
NVD
added 2025/11/12 9:15 p.m.35 views

CVE-2025-13063

A flaw has been found in DinukaNavaratna Dee Store 1.0. Affected is an unknown function. Executing manipulation can lead to missing authorization. The attack may be performed from remote. The exploit has been published and may be used. Multiple endpoints are affected...

7.5CVSS0.00312EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/11/12 9:2 p.m.3 views

CVE-2025-13063 DinukaNavaratna Dee Store authorization

A flaw has been found in DinukaNavaratna Dee Store 1.0. Affected is an unknown function. Executing manipulation can lead to missing authorization. The attack may be performed from remote. The exploit has been published and may be used. Multiple endpoints are affected...

7.5CVSS7.1AI score0.00312EPSS
Exploits0References4
Rows per page
Query Builder