Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2020-18665

Malware in sbrugna...

5.4CVSS5.6AI score0.00343EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-50737

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00218EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 12:28 a.m.5 views

CVE-2022-48023

Insufficient privilege verification in Zammad v5.3.0 allows an authenticated attacker to perform changes on the tags of their customer tickets using the Zammad API. This is now corrected in v5.3.1 so that only agents with write permissions may change ticket tags...

4.3CVSS6.8AI score0.00218EPSS
Exploits0References1
NVD
NVDadded 2023/02/03 1:15 a.m.14 views

CVE-2022-48023

Insufficient privilege verification in Zammad v5.3.0 allows an authenticated attacker to perform changes on the tags of their customer tickets using the Zammad API. This is now corrected in v5.3.1 so that only agents with write permissions may change ticket tags...

4.3CVSS4.6AI score0.00218EPSS
Exploits0References1
Prion
Prionadded 2023/02/03 1:15 a.m.17 views

Design/Logic Flaw

Insufficient privilege verification in Zammad v5.3.0 allows an authenticated attacker to perform changes on the tags of their customer tickets using the Zammad API. This is now corrected in v5.3.1 so that only agents with write permissions may change ticket tags...

4CVSS4.7AI score0.00218EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/02/03 12:0 a.m.5 views

PT-2023-15554 · Zammad · Zammad

Name of the Vulnerable Software and Affected Versions: Zammad version 5.3.0 Description: Insufficient privilege verification allows an authenticated attacker to perform changes on the tags of their customer tickets using the Zammad API. The issue has been corrected so that only agents with write...

4.3CVSS4.6AI score0.00218EPSS
Exploits0References4
Cvelist
Cvelistadded 2023/02/03 12:0 a.m.17 views

CVE-2022-48023

Insufficient privilege verification in Zammad v5.3.0 allows an authenticated attacker to perform changes on the tags of their customer tickets using the Zammad API. This is now corrected in v5.3.1 so that only agents with write permissions may change ticket tags...

4.8AI score0.00218EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/09/27 12:0 a.m.2 views

PT-2022-25554 · Zammad · Zammad

Name of the Vulnerable Software and Affected Versions: Zammad versions 5.2.1 Description: The issue concerns a fine-grained permission model in Zammad that allows configuration of read-only access to tickets. However, agents were still able to perform certain operations on these tickets, such as...

4.3CVSS4.5AI score0.00165EPSS
Exploits0References4
CNVD
CNVDadded 2020/12/29 12:0 a.m.1 views

Zammad Cross-Site Scripting Vulnerability (CNVD-2020-75062)

Zammad is a Web-based open source helpdesk/customer support system. A stored cross-site scripting vulnerability exists in Zammad versions prior to 3.4.1. An attacker can exploit this vulnerability to execute malicious code via the Tags element in TIcket...

5.4CVSS6.4AI score0.00343EPSS
Exploits0References1
CNNVD
CNNVDadded 2020/12/28 12:0 a.m.3 views

Zammad 跨站脚本漏洞

Zammad is a Web-based open source helpdesk/customer support system. A stored cross-site scripting vulnerability exists in Zammad versions prior to 3.4.1. An attacker can exploit this vulnerability to execute malicious code via the Tags element in TIcket...

5.4CVSS5.8AI score0.00343EPSS
Exploits0References2
Rows per page
Query Builder