Lucene search
K

110 matches found

NVD
NVD
added 6 days ago5 views

CVE-2026-55412

ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source component. The RestAPI data source executes HTTP requests server-side, and its private IP filter only...

8.3CVSS0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 6 days ago27 views

CVE-2026-55412 ToolJet Cloud - SSRF to Azure Cloud Infrastructure Compromise

ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source component. The RestAPI data source executes HTTP requests server-side, and its private IP filter only...

8.3CVSS0.00193EPSS
Exploits0References1
EUVD
EUVD
added 6 days ago5 views

EUVD-2026-39469

ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source component. The RestAPI data source executes HTTP requests server-side, and its private IP filter only...

8.3CVSS5.9AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.6 views

CVE-2023-31208

Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk 2.0.0p36, 2.1.0p28, and 2.2.0b8 beta allows arbitrary livestatus command execution for authorized users...

8.8CVSS7.2AI score0.00974EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.5 views

PT-2025-41173

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.1.0.10 Dell PowerProtect Data Domain versions 7.13.1.0 through 7.13.1.25 Dell PowerProtect Data Domain versions 7.10.1.0 through 7.10.1.50 Description The Dell PowerProtect Data Domain...

7.5CVSS6.8AI score0.00338EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-35523

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00974EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-51017

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00456EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-51018

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00486EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10484

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00644EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19936

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00327EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-27684

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00503EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-51944

Malicious code in bioql PyPI...

4.9CVSS6.6AI score0.00375EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49291

Malicious code in bioql PyPI...

9.2CVSS6.4AI score0.00459EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-31208

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk 2.0.0p36, 2.1.0p28, and 2.2.0b8 beta allows arbitrary livestatus command...

8.8CVSS8.2AI score0.00974EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-8606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bypass of two factor authentication in RestAPI in Checkmk 2.3.0p16 and 2.2.0p34 allows authenticated users to bypass two factor authentication CVE-2024-8606 Not...

9.2CVSS5.6AI score0.00459EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/06 9:7 a.m.9 views

CVE-2025-32918

Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...

8.8CVSS6.5AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2025/07/04 8:15 a.m.7 views

CVE-2025-32918

Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...

8.8CVSS0.00327EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/04 8:12 a.m.3 views

CVE-2025-32918 Livestatus injection in autocomplete endpoint

Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...

5.3CVSS7.1AI score0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/04 8:12 a.m.12 views

CVE-2025-32918 Livestatus injection in autocomplete endpoint

Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...

5.3CVSS0.00327EPSS
Exploits0References1
CVE
CVE
added 2025/07/04 8:12 a.m.29 views

CVE-2025-32918

CVE-2025-32918 affects Checkmk where the Livestatus delimiter is improperly neutralized in the RestAPI autocomplete endpoint. This allows an authenticated user to inject arbitrary Livestatus commands. Affected versions are Checkmk <2.4.0p6, <2.3.0p35,

8.8CVSS6.5AI score0.00327EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder