Lucene search
+L

6 matches found

Snyk
Snyk
added 2026/03/11 10:40 p.m.7 views

Incorrect Authorization

Overview @studiocms/s3-storage is an Add S3 Storage Support into your StudioCMS project. Affected versions of this package are vulnerable to Incorrect Authorization via the S3ApiService POST/PUT handlers in the S3 storage manager. An attacker can gain full S3 file management upload, delete, renam...

7.6CVSS5.8AI score0.00183EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28610

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00576EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/22 4:14 p.m.11 views

CVE-2025-55745 UnoPim Quick Export feature is vulnerable to CSV injection

UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Versions 0.3.0 and prior are vulnerable to CSV injection, also known as formula injection, in the Quick Export feature. This vulnerability allows attackers to inject malicious content into exported...

5.5CVSS0.00576EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/08/22 4:14 p.m.3 views

CVE-2025-55745 UnoPim Quick Export feature is vulnerable to CSV injection

UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Versions 0.3.0 and prior are vulnerable to CSV injection, also known as formula injection, in the Quick Export feature. This vulnerability allows attackers to inject malicious content into exported...

5.5CVSS7.3AI score0.00576EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.9 views

PT-2025-34444 · Microsoft +1 · Office Excel +1

Name of the Vulnerable Software and Affected Versions: UnoPim versions prior to 0.3.1 Description: UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Versions 0.3.0 and prior are susceptible to CSV injection, also known as formula injection, in the...

5.5CVSS7.3AI score0.00576EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.13 views

PT-2025-34443 · Unopim +1 · Unopim +1

Name of the Vulnerable Software and Affected Versions: UnoPim versions 0.3.0 and earlier Description: UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Users lacking the necessary Delete privilege for products can bypass access controls by submitti...

8.1CVSS6.5AI score0.00387EPSS
Exploits1References12
Rows per page
Query Builder