Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

73 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-32464

Malicious code in bioql PyPI...

7.5CVSS8.1AI score0.01063EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.15 views

EUVD-2022-32465

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00479EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-34340

Malicious code in bioql PyPI...

9.8CVSS8.9AI score0.01056EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-7364

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00753EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-34878

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.0094EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-28175

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00576EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.11 views

EUVD-2022-28174

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.01224EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 12:34 a.m.7 views

CVE-2022-4111

Unrestricted file size limit can lead to DoS in tooljet/tooljet 1.27 by allowing a logged in attacker to upload profile pictures over 2MB...

6.5CVSS6.8AI score0.00753EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:39 p.m.7 views

CVE-2022-27978

Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request...

7.5CVSS6.7AI score0.01063EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:39 p.m.32 views

CVE-2022-27979

A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...

5.4CVSS5.7AI score0.00479EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:19 p.m.10 views

CVE-2022-2631

Improper Access Control in GitHub repository tooljet/tooljet prior to v1.19.0...

9.8CVSS6.8AI score0.0094EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:18 p.m.13 views

CVE-2022-2037

Excessive Attack Surface in GitHub repository tooljet/tooljet prior to v1.16.0...

9.8CVSS6.7AI score0.01056EPSS
Exploits1References1
OSV
OSVadded 2023/04/26 4:15 p.m.23 views

CVE-2022-27978

Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request...

7.5CVSS7AI score
Exploits0References2
NVD
NVDadded 2023/04/26 4:15 p.m.44 views

CVE-2022-27979

A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...

5.4CVSS5.3AI score0.00479EPSS
Exploits1References2
NVD
NVDadded 2023/04/26 4:15 p.m.19 views

CVE-2022-27978

Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request...

7.5CVSS7.4AI score0.01063EPSS
Exploits1References2
OSV
OSVadded 2023/04/26 4:15 p.m.17 views

CVE-2022-27979

A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...

5.4CVSS5.9AI score
Exploits0References2
Prion
Prionadded 2023/04/26 4:15 p.m.23 views

Cross site request forgery (csrf)

Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request...

5CVSS7.3AI score0.01063EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2023/04/26 4:15 p.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...

4.9CVSS5.3AI score0.00479EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2023/04/26 12:0 a.m.29 views

CVE-2022-27978

Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request...

7.5AI score0.01063EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2023/04/26 12:0 a.m.9 views

CVE-2022-27979

A cross-site scripting XSS vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component...

5.7AI score0.00479EPSS
Exploits1References2
Rows per page
Query Builder