Lucene search
K

231 matches found

CNVD
CNVD
added 2025/11/05 12:0 a.m.2 views

News Portal settings.py File Information Disclosure Vulnerability

News Portal is a news portal. News Portal suffers from an information disclosure vulnerability that originates from an unknown function in the /onps/settings.py file that fails to properly handle sensitive data. The vulnerability can be exploited to insert sensitive information into debugging cod...

6.3CVSS4.8AI score0.00534EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/04 7:5 a.m.11 views

CVE-2025-12615

A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file /onps/settings.py. Such manipulation of the argument SECRETKEY leads to use of hard-coded cryptographic key . The attack may be performed from remote. The attack...

8.1CVSS6.4AI score0.00379EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/03 6:30 a.m.6 views

EUVD-2025-37470

A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file /onps/settings.py. Such manipulation of the argument SECRETKEY leads to use of hard-coded cryptographic key . The attack may be performed from remote. The attack...

5.1CVSS6AI score0.00379EPSS
Exploits1References6
NVD
NVD
added 2025/11/03 4:15 a.m.4 views

CVE-2025-12615

A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file /onps/settings.py. Such manipulation of the argument SECRETKEY leads to use of hard-coded cryptographic key . The attack may be performed from remote. The attack...

8.1CVSS0.00379EPSS
Exploits1References5
OSV
OSV
added 2025/11/03 4:15 a.m.4 views

CVE-2025-12615

A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file /onps/settings.py. Such manipulation of the argument SECRETKEY leads to use of hard-coded cryptographic key . The attack may be performed from remote. The attack...

8.1CVSS5.3AI score0.00379EPSS
Exploits1References5
NVD
NVD
added 2025/11/03 4:15 a.m.5 views

CVE-2025-12616

A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown function of the file /onps/settings.py. Performing a manipulation results in insertion of sensitive information into debugging code. It is possible to initiate the attack remotely. The attack's complexi...

6.3CVSS0.00534EPSS
Exploits1References5
EUVD
EUVD
added 2025/11/03 4:2 a.m.5 views

EUVD-2025-37472

A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown function of the file /onps/settings.py. Performing manipulation results in insertion of sensitive information into debugging code. It is possible to initiate the attack remotely. The attack's complexity...

6.3CVSS5.8AI score0.00534EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/03 4:2 a.m.6 views

CVE-2025-12616 PHPGurukul News Portal settings.py insertion of sensitive information into debugging code

A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown function of the file /onps/settings.py. Performing a manipulation results in insertion of sensitive information into debugging code. It is possible to initiate the attack remotely. The attack's complexi...

6.3CVSS4.3AI score0.00534EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/03 4:2 a.m.11 views

CVE-2025-12616 PHPGurukul News Portal settings.py insertion of sensitive information into debugging code

A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown function of the file /onps/settings.py. Performing a manipulation results in insertion of sensitive information into debugging code. It is possible to initiate the attack remotely. The attack's complexi...

6.3CVSS0.00534EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/03 3:32 a.m.9 views

CVE-2025-12615 PHPGurukul News Portal settings.py hard-coded key

A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file /onps/settings.py. Such manipulation of the argument SECRETKEY leads to use of hard-coded cryptographic key . The attack may be performed from remote. The attack...

5.1CVSS0.00379EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/11/03 12:0 a.m.4 views

PHPGurukul News Portal 安全漏洞

News Portal is a news portal. News Portal has a hard-coded vulnerability that stems from the use of a fixed encryption key for the handling of the SECRETKEY parameter in the file /onps/settings.py. An attacker could exploit this vulnerability to obtain sensitive system information...

8.1CVSS5.1AI score0.00379EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/03 12:0 a.m.5 views

PT-2025-44749

Name of the Vulnerable Software and Affected Versions PHPGurukul News Portal version 1.0 Description A flaw exists in PHPGurukul News Portal 1.0 where manipulation of an unknown function within the /onps/settings.py file can lead to the insertion of sensitive information into debugging code. This...

6.3CVSS5.8AI score0.00534EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-17144

Malware in sbrugna...

8.8CVSS8.8AI score0.01202EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-7828

Malware in sbrugna...

9CVSS7AI score0.03197EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-15372

Malware in sbrugna...

9.8CVSS9.1AI score0.00607EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-3822

Malware in sbrugna...

7.8CVSS7.7AI score0.00313EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 9:37 p.m.4 views

EUVD-2025-32428

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0...

8.7CVSS6.4AI score0.00328EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/03 9:37 p.m.2 views

CVE-2025-61680 Minecraft RCON Terminal: Plain Text Password Storage in Configuration

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0...

8.7CVSS6.5AI score0.00328EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/03 9:37 p.m.8 views

CVE-2025-61680 Minecraft RCON Terminal: Plain Text Password Storage in Configuration

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0...

8.7CVSS0.00328EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-49270

Malicious code in bioql PyPI...

6.9CVSS4.9AI score0.00409EPSS
Exploits0References5
Rows per page
Query Builder