Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-16749

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00219EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-16748

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00202EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-16747

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.0012EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/05 12:3 a.m.18 views

CVE-2025-43923

An issue was discovered in ReportController in Unicom Focal Point 7.6.1. A user who has administrative privilege in Focal Point can perform SQL injection via the image parameter during a delete report image operation...

6.5CVSS8.1AI score0.00219EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/05 12:3 a.m.14 views

CVE-2025-43925

An issue was discovered in Unicom Focal Point 7.6.1. The database is encrypted with a hardcoded key, making it easier to recover the cleartext data...

4.6CVSS6.8AI score0.0012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/05 12:3 a.m.12 views

CVE-2025-43924

Cross Site Scripting vulnerability was discovered in Unicom Focal Point 7.6.1. The val parameter in SettingController for /fp/admin/settings/loginpage and the rootserviceurl parameter in FriendsController for /fp/admin/settings/friends, entered by an admin, allow stored XSS...

6.1CVSS6.3AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2025/06/03 3:15 p.m.3 views

CVE-2025-43924

Cross Site Scripting vulnerability was discovered in Unicom Focal Point 7.6.1. The val parameter in SettingController for /fp/admin/settings/loginpage and the rootserviceurl parameter in FriendsController for /fp/admin/settings/friends, entered by an admin, allow stored XSS...

6.1CVSS5.8AI score0.00202EPSS
Exploits0References2
NVD
NVD
added 2025/06/03 3:15 p.m.21 views

CVE-2025-43923

An issue was discovered in ReportController in Unicom Focal Point 7.6.1. A user who has administrative privilege in Focal Point can perform SQL injection via the image parameter during a delete report image operation...

6.5CVSS0.00219EPSS
Exploits0References2
OSV
OSV
added 2025/06/03 3:15 p.m.5 views

CVE-2025-43923

An issue was discovered in ReportController in Unicom Focal Point 7.6.1. A user who has administrative privilege in Focal Point can perform SQL injection via the image parameter during a delete report image operation...

6.5CVSS5.8AI score0.00219EPSS
Exploits0References2
NVD
NVD
added 2025/06/03 3:15 p.m.13 views

CVE-2025-43925

An issue was discovered in Unicom Focal Point 7.6.1. The database is encrypted with a hardcoded key, making it easier to recover the cleartext data...

4.6CVSS0.0012EPSS
Exploits0References2
OSV
OSV
added 2025/06/03 3:15 p.m.5 views

CVE-2025-43925

An issue was discovered in Unicom Focal Point 7.6.1. The database is encrypted with a hardcoded key, making it easier to recover the cleartext data...

4.6CVSS5.8AI score0.0012EPSS
Exploits0References2
NVD
NVD
added 2025/06/03 3:15 p.m.26 views

CVE-2025-43924

Cross Site Scripting vulnerability was discovered in Unicom Focal Point 7.6.1. The val parameter in SettingController for /fp/admin/settings/loginpage and the rootserviceurl parameter in FriendsController for /fp/admin/settings/friends, entered by an admin, allow stored XSS...

6.1CVSS0.00202EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/03 12:0 a.m.7 views

CVE-2025-43923

An issue was discovered in ReportController in Unicom Focal Point 7.6.1. A user who has administrative privilege in Focal Point can perform SQL injection via the image parameter during a delete report image operation...

8AI score0.00219EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/03 12:0 a.m.17 views

CVE-2025-43925

An issue was discovered in Unicom Focal Point 7.6.1. The database is encrypted with a hardcoded key, making it easier to recover the cleartext data...

0.0012EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/03 12:0 a.m.22 views

CVE-2025-43923

An issue was discovered in ReportController in Unicom Focal Point 7.6.1. A user who has administrative privilege in Focal Point can perform SQL injection via the image parameter during a delete report image operation...

0.00219EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.7 views

PT-2025-23623 · Unicom · Unicom Focal Point

Name of the Vulnerable Software and Affected Versions: Unicom Focal Point version 7.6.1 Description: An issue was discovered where the database is encrypted with a hardcoded key, making it easier to recover the cleartext data. Recommendations: For Unicom Focal Point version 7.6.1, consider changi...

4.6CVSS6.1AI score0.0012EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.6 views

PT-2025-23622 · Unicom · Unicom Focal Point

Name of the Vulnerable Software and Affected Versions: Unicom Focal Point version 7.6.1 Description: A Cross Site Scripting issue was found. The val parameter in SettingController for the "/fp/admin/settings/loginpage" endpoint and the rootserviceurl parameter in FriendsController for the...

6.1CVSS5.3AI score0.00202EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/06/03 12:0 a.m.20 views

CVE-2025-43924

Cross Site Scripting vulnerability was discovered in Unicom Focal Point 7.6.1. The val parameter in SettingController for /fp/admin/settings/loginpage and the rootserviceurl parameter in FriendsController for /fp/admin/settings/friends, entered by an admin, allow stored XSS...

0.00202EPSS
Exploits0References2
CVE
CVE
added 2025/06/03 12:0 a.m.56 views

CVE-2025-43923

CVE-2025-43923 affects Unicom Focal Point 7.6.1 in the ReportController. The issue allows a user with administrative privileges to perform a SQL injection via the image parameter during a delete report image operation. The CVSS metrics indicate a network-accessible issue with low confidentiality ...

6.5CVSS8.1AI score0.00219EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/03 12:0 a.m.6 views

CVE-2025-43924

Cross Site Scripting vulnerability was discovered in Unicom Focal Point 7.6.1. The val parameter in SettingController for /fp/admin/settings/loginpage and the rootserviceurl parameter in FriendsController for /fp/admin/settings/friends, entered by an admin, allow stored XSS...

6.3AI score0.00202EPSS
Exploits0References2
Rows per page
Query Builder