Lucene search
+L

1251 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-0894

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.01895EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-7221

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00529EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-49795

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00363EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5023

Malicious code in bioql PyPI...

7.8CVSS5AI score0.03474EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-6037

Malicious code in bioql PyPI...

9.1CVSS9AI score0.0104EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-49551

Malicious code in bioql PyPI...

6.1CVSS8.7AI score0.00309EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-19626

Malicious code in bioql PyPI...

6.5CVSS6.9AI score0.01104EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-0418

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00722EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2021-8679

Malicious code in bioql PyPI...

7.7CVSS6.7AI score0.01321EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-5562

Malicious code in bioql PyPI...

6.1CVSS7.8AI score0.00246EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-34558

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00277EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2019-1006

Malicious code in bioql PyPI...

5.3CVSS5.9AI score0.1786EPSS
Exploits0References45
RedhatCVE
RedhatCVE
added 2025/07/28 10:10 a.m.5 views

CVE-2023-53158

A flaw was found in gix-transport. The handling of clone URLs by the crate allows an attacker to execute arbitrary commands by injecting a malicious substring into the URL, specifically through the ssh protocol and ProxyCommand option. This vulnerability allows a local attacker to trigger command...

4.1CVSS6.9AI score0.00171EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/07/26 3:30 a.m.8 views

CVE-2025-54414 Anubis accepts crafted redirect URLs in pass-challenge 'Try Again' buttons

Anubis is a Web AI Firewall Utility that weighs the soul of users' connections using one or more challenges in order to protect upstream resources from scraper bots. In versions 1.21.2 and below, attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript...

5.1CVSS7.1AI score0.0048EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/07/18 8:15 p.m.5 views

CVE-2025-54310

qBittorrent before 5.1.2 does not prevent access to a local file that is referenced in a link URL. This affects rsswidget.cpp and searchjobwidget.cpp...

5.3CVSS7AI score0.00398EPSS
Exploits0References3
NVD
NVD
added 2025/07/07 10:15 a.m.6 views

CVE-2025-3777

Hugging Face Transformers versions up to 4.49.0 are affected by an improper input validation vulnerability in the imageutils.py file. The vulnerability arises from insecure URL validation using the startswith method, which can be bypassed through URL username injection. This allows attackers to...

3.5CVSS0.00329EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/07/03 3:22 p.m.25 views

CVE-2025-34065

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr function allows unauthenticated access to any request containing "/nobody" in the URL, bypassing login controls...

6.9CVSS7.6AI score0.00538EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/02 12:0 a.m.7 views

Zulip server 跨站脚本漏洞

Zulip server is an open source team chat application from Zulip Inc. in the United States. A cross-site scripting vulnerability exists in Zulip server versions 2.0.0-rc1 through prior to 10.4, which stems from a cross-site scripting vulnerability in the /digest/ URL...

6.8CVSS5.9AI score0.00233EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/07/01 2:47 p.m.4 views

CVE-2025-34065 AVTECH IP camera, DVR, and NVR Devices Authentication Bypass via /nobody URL Path

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr function allows unauthenticated access to any request containing "/nobody" in the URL, bypassing login controls...

6.9CVSS7.5AI score0.00538EPSS
Exploits0References5
CVE
CVE
added 2025/06/30 8:45 p.m.58 views

CVE-2025-49520

CVE-2025-49520 affects Ansible Automation Platform’s EDA component where user-supplied Git URLs are passed unsanitized to git ls-remote, enabling an authenticated attacker to inject arguments and execute arbitrary commands on the EDA worker. In Kubernetes/OpenShift, this can lead to service accou...

8.8CVSS6.9AI score0.00484EPSS
Exploits0References3
Rows per page
Query Builder