Lucene search
+L

5 matches found

OSV
OSV
added 2 days ago4 views

CVE-2026-47751 Claude Code Action: Malicious MCP Server Configuration in PRs Enables Remote Code Execution and Secret Exfiltration

Claude Code Action is a general-purpose GitHub action that runs Claude Code on GitHub pull requests and issues. Prior to 1.0.74, because the action checked out attacker-controlled pull request head branches, read .mcp.json from the working directory via default setting sources, and unconditionall...

5.3CVSS6.5AI score0.00426EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2024-29027

Malicious code in bioql PyPI...

7.6CVSS8.6AI score0.00541EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:22 a.m.21 views

CVE-2024-31116

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 10Web 10Web Map Builder for Google Maps.This issue affects 10Web Map Builder for Google Maps: from n/a through 1.0.74...

7.6CVSS8.9AI score0.00541EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/09/24 12:0 a.m.15 views

WordPress CP Polls Plugin <= 1.0.74 is vulnerable to Cross Site Scripting (XSS)

Software CP Polls Type Plugin Vulnerable versions = 1.0.74 Fixed in 1.0.75 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47297 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bd0fc6118ee8 Credits Muhamad Agil Fachrian Required...

7.1CVSS6.5AI score0.00304EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/03/31 7:15 p.m.3 views

CVE-2024-31116

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 10Web 10Web Map Builder for Google Maps.This issue affects 10Web Map Builder for Google Maps: from n/a through 1.0.74...

7.2CVSS5.8AI score0.00541EPSS
Exploits0References1
Rows per page
Query Builder