Lucene search
K

108 matches found

NVD
NVD
added 2025/10/12 9:15 p.m.3 views

CVE-2025-11645

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

2.4CVSS0.00204EPSS
Exploits0References4
CVE
CVE
added 2025/10/12 8:32 p.m.20 views

CVE-2025-11645

CVE-2025-11645 (Tomofun Furbo Mobile App) affects Android versions up to 7.57.0a, arising from insecure storage in the Authentication Token Handler. The issue may allow information disclosure on a physical device; the exploit has been publicly disclosed. Multiple connected sources (including PT-2...

2.4CVSS3.7AI score0.00204EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/12 12:0 a.m.5 views

PT-2025-41733

Name of the Vulnerable Software and Affected Versions Tomofun Furbo Mobile App versions through 7.57.0a Description A security issue has been identified in the Authentication Token Handler component of the Tomofun Furbo Mobile App on Android. The vulnerability involves insecure storage of sensiti...

2.4CVSS3.6AI score0.00204EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-1227

Malware in sbrugna...

9.8CVSS4.4AI score0.00805EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-27606

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00262EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-48544

Malicious code in bioql PyPI...

7.5CVSS4.8AI score0.00786EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-33919

Malicious code in bioql PyPI...

8.1CVSS5.4AI score0.00696EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-20137

Malicious code in bioql PyPI...

8.1CVSS4.7AI score0.00663EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-20136

Malicious code in bioql PyPI...

6.3CVSS4.8AI score0.00353EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-16588

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00498EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-21176

Malicious code in bioql PyPI...

6.3CVSS4.8AI score0.00363EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/21 1:2 a.m.8 views

CVE-2025-10759 Webkul QloApps CSRF Token authorization

A vulnerability was detected in Webkul QloApps up to 1.7.0. This affects an unknown function of the component CSRF Token Handler. Performing manipulation of the argument token results in authorization bypass. The attack may be initiated remotely. The exploit is now public and may be used. The...

6.9CVSS0.0032EPSS
Exploits1References5
CVE
CVE
added 2025/09/18 2:32 p.m.14 views

CVE-2025-10671

CVE-2025-10671 concerns youth-is-as-pale-as-poetry e-learning 1.0, specifically the JWT Token Handler’s JwtUtils.encryptSecret. Multiple connected sources confirm the vulnerability is due to insufficiently random values generated by encryptSecret, which can be exploited remotely. The issue affect...

6.3CVSS4.5AI score0.00401EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/18 12:0 a.m.5 views

e-learning 安全特征问题漏洞

e-learning is an exam system for youth-is-as-pale-as-poetry individual developers. A security feature issue vulnerability exists in e-learning version 1.0, which stems from insufficient generation of random values by the encryptSecret function in the JwtUtils.java file in the JWT Token Handler...

6.3CVSS4.8AI score0.00401EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/12 7:23 p.m.3 views

CVE-2025-10209

A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some unknown processing of the component Authorization Token Handler. Performing manipulation results in improper authorization. The attack can be initiated remotely. The exploit has been released to the public...

5.5CVSS6.5AI score0.00262EPSS
Exploits0References1
NVD
NVD
added 2025/09/10 7:15 p.m.2 views

CVE-2025-10209

A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some unknown processing of the component Authorization Token Handler. Performing manipulation results in improper authorization. The attack can be initiated remotely. The exploit has been released to the public...

5.5CVSS0.00262EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/09/10 6:32 p.m.10 views

CVE-2025-10209 Papermerge DMS Authorization Token improper authorization

A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some unknown processing of the component Authorization Token Handler. Performing manipulation results in improper authorization. The attack can be initiated remotely. The exploit has been released to the public...

5.5CVSS0.00262EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/10 6:32 p.m.1 views

CVE-2025-10209 Papermerge DMS Authorization Token improper authorization

A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some unknown processing of the component Authorization Token Handler. Performing manipulation results in improper authorization. The attack can be initiated remotely. The exploit has been released to the public...

5.5CVSS6.3AI score0.00262EPSS
Exploits0References4
CVE
CVE
added 2025/09/10 6:32 p.m.11 views

CVE-2025-10209

The CVE-2025-10209 entry concerns Papermerge DMS up to version 3.5.3. The vulnerability is in the Authorization Token Handler component, where manipulation can result in improper authorization. The issue is exploitable remotely, with exploitation information publicly available and a proof-of-conc...

5.5CVSS6.3AI score0.00262EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/10 12:0 a.m.5 views

PT-2025-37087

Name of the Vulnerable Software and Affected Versions: Papermerge DMS versions through 3.5.3 Description: A security flaw exists in Papermerge DMS related to the Authorization Token Handler component. Manipulation of this component can lead to improper authorization. This issue can be exploited...

5.5CVSS5.1AI score0.00262EPSS
Exploits0References8
Rows per page
Query Builder