CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-29332

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01837EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 12:0 a.m.•5 views

CVE-2022-24449

Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...

9.8CVSS6.9AI score0.01837EPSS

Exploits0References1

BDU FSTEC•added 2025/05/14 12:0 a.m.•13 views

The vulnerability of the Solar appScreener platform, which stems from insufficient verification of incoming requests, allows a hacker to execute an SSRF attack.

The vulnerability of the Solar appScreener platform is related to insufficient verification of incoming requests. Exploiting this vulnerability could allow a remote attacker to execute an SSRF attack...

6.4CVSS5.7AI score

Exploits0Affected Software1

OSV•added 2022/04/28 9:15 p.m.•2 views

CVE-2022-24449

Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...

9.8CVSS5.8AI score0.01837EPSS

Exploits0References2

NVD•added 2022/04/28 9:15 p.m.•16 views

CVE-2022-24449

Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...

9.8CVSS0.01837EPSS

Exploits0References2

ATTACKERKB•added 2022/04/28 9:15 p.m.•3 views

CVE-2022-24449

Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...

9.8CVSS7.3AI score0.01837EPSS

Exploits0References3

Prion•added 2022/04/28 9:15 p.m.•20 views

Server side request forgery (ssrf)

Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...

7.5CVSS9.2AI score0.01837EPSS

Exploits0References2Affected Software1

CVE•added 2022/04/28 8:6 p.m.•78 views

CVE-2022-24449

The CVE-2022-24449 entry affects Solar appScreener up to version 3.10.4, where a crafted XML document can trigger XXE and SSRF when no valid license is present. This is supported by PT-2022-16705 details naming affected versions and the license requirement as a condition for exploitation. Practic...

9.8CVSS9.2AI score0.01837EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/04/28 8:6 p.m.•12 views

CVE-2022-24449

Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...

9.5AI score0.01837EPSS

Exploits0References2

CNNVD•added 2022/04/28 12:0 a.m.•3 views

Solar appScreener 代码问题漏洞

Solar appScreener is a static application security testing SAST tool from Solar appScreener, Inc. It is used to detect vulnerabilities and backdoors in binary and source code. A security vulnerability exists in Solar appScreener 3.10.4 and prior versions that originates from an XXE and SSRF attac...

9.8CVSS8.3AI score0.01837EPSS

Exploits0References4

Positive Technologies•added 2022/04/28 12:0 a.m.•4 views

PT-2022-16705 · Solar · Solar Appscreener

Name of the Vulnerable Software and Affected Versions: Solar appScreener versions 3.10.4 and earlier Description: The issue allows XXE and SSRF attacks via a crafted XML document when a valid license is not present. Recommendations: For Solar appScreener versions 3.10.4 and earlier, ensure a vali...

9.8CVSS9.1AI score0.01837EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by