Lucene search
+L

8 matches found

NVD
NVD
added 2026/04/24 11:16 a.m.12 views

CVE-2025-62233

Deserialization of Untrusted Data vulnerability in Apache DolphinScheduler RPC module. This issue affects Apache DolphinScheduler: Version = 3.2.0 and 3.3.1. Attackers who can access the Master or Worker nodes can compromise the system by creating a StandardRpcRequest, injecting a malicious class...

6.3CVSS0.00537EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.31 views

EUVD-2024-54950

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00461EPSS
Exploits0References1
NVD
NVD
added 2025/09/03 10:15 a.m.36 views

CVE-2024-43166

Incorrect Default Permissions vulnerability in Apache DolphinScheduler. This issue affects Apache DolphinScheduler: before 3.2.2. Users are recommended to upgrade to version 3.3.1, which fixes the issue...

9.8CVSS0.00496EPSS
Exploits0References2
CVE
CVE
added 2025/09/03 9:10 a.m.51 views

CVE-2024-43166

Summary (CVE-2024-43166) : Apache DolphinScheduler before 3.2.2 has an incorrect default permissions vulnerability. Multiple sources (Red Hat, NVD, OSV, CNVD, GHSA) reference the same issue and advise upgrading to 3.3.1 to fix it. The CVSSv3.1 score is listed as 9.8 (CRITICAL) with network attack...

9.8CVSS6.4AI score0.00496EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/09/03 9:10 a.m.8 views

CVE-2024-43166

Incorrect Default Permissions vulnerability in Apache DolphinScheduler. This issue affects Apache DolphinScheduler: before 3.2.2. Users are recommended to upgrade to version 3.3.1, which fixes the issue...

9.8CVSS7AI score0.00496EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/03 8:38 a.m.4 views

CVE-2024-43115 Apache DolphinScheduler: Alert Script Attack

Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can execute any shell script server by alert script. This issue affects Apache DolphinScheduler: before 3.2.2. Users are recommended to upgrade to version 3.3.1, which fixes the issue...

6.4AI score0.00461EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/12/21 7:15 p.m.4 views

CVE-2022-4632

A vulnerability has been found in Auto Upload Images up to 3.3.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 3.3.1 is able to address this issue...

6.1CVSS3.8AI score0.00517EPSS
Exploits0References5
OSV
OSV
added 2022/06/10 10:15 a.m.6 views

CVE-2017-20036

A vulnerability, which was classified as problematic, was found in PHPList 3.2.6. Affected is an unknown function of the file /lists/admin/ of the component Bounce Rule. The manipulation leads to cross site scripting Persistent. It is possible to launch the attack remotely. Upgrading to version...

5.4CVSS4.5AI score0.00569EPSS
Exploits1References2
Rows per page
Query Builder