Lucene search
+L

5 matches found

PyPA
PyPA
added 2025/09/24 8:15 a.m.14 views

PYSEC-2025-88

Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 before 2.0.5.Users are recommended to upgrade to version 2.0.5, which fixes the issue...

5.3CVSS5.8AI score0.00457EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/09/24 7:57 a.m.41 views

CVE-2025-48459

CVE-2025-48459 concerns Apache IoTDB, where deserialization of untrusted data could be exploited via attacker-controlled serialized objects. Affected: IoTDB 1.0.0 up to, but not including, 2.0.5. Reports across multiple sources describe potential ability to execute arbitrary code or alter server ...

5.3CVSS6.6AI score0.00457EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2023/11/22 4:15 p.m.10 views

PYSEC-2023-285

Nautobot is a Network Source of Truth and Network Automation Platform built as a web application All users of Nautobot versions earlier than 1.6.6 or 2.0.5 are potentially affected by a cross-site scripting vulnerability. Due to incorrect usage of Django's marksafe API when rendering certain type...

7.1CVSS6.1AI score0.00543EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2023/02/22 12:0 a.m.5 views

PT-2023-16635 · Modoboa · Modoboa

Name of the Vulnerable Software and Affected Versions: modoboa/modoboa versions prior to 2.0.5 Description: The issue is related to Cross-site Scripting XSS - Reflected. This is a type of security vulnerability that occurs when an application includes user input in its output without proper...

4.8CVSS4.7AI score0.00494EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2019/09/18 12:0 a.m.8 views

PT-2019-14585 · Zulip · Zulip Server

Name of the Vulnerable Software and Affected Versions: Zulip server versions prior to 2.0.5 Description: The issue concerns the Markdown parser in the Zulip server, which used a regular expression vulnerable to exponential backtracking. This could allow a logged-in user to send a crafted message,...

6.5CVSS6.4AI score0.01249EPSS
Exploits0References4
Rows per page
Query Builder