Lucene search
K

99 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-46651

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00285EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-46648

Malicious code in bioql PyPI...

5.5CVSS4.4AI score0.00296EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-32761

Malicious code in bioql PyPI...

5.5CVSS4.6AI score0.00618EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13593

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00202EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25880

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2023-36437

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.56064EPSS
Exploits0References2
CVE
CVE
added 2025/08/14 7:15 a.m.31 views

CVE-2025-27388

CVE-2025-27388 describes an issue where loading arbitrary external URLs through WebView components can inject malicious JavaScript to steal user tokens. The initial entry notes high impact (CVSS 4.0 base score 8.3) with NETWORK attack vector and high confidentiality impact. Connected documents co...

8.3CVSS7.5AI score0.00359EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/08 2:31 a.m.10 views

CVE-2025-6259

The esri-map-view plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's esri-map-view shortcode in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.5AI score0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/06 1:45 a.m.5 views

CVE-2025-6259 esri-map-view <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via esri-map-view Shortcode

The esri-map-view plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's esri-map-view shortcode in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.5AI score0.00235EPSS
Exploits0References2
CNVD
CNVD
added 2025/07/21 12:0 a.m.5 views

Unspecified Vulnerability in Oracle Database Server (CNVD-2025-24075)

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. A security vulnerability exists in Oracle Database Materialized View for Oracle Databas...

2.7CVSS6.7AI score0.00256EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/14 12:0 a.m.2 views

CVE-2025-51658

SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMSInquiryView.php...

5.4CVSS6AI score0.00221EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/23 2:50 a.m.7 views

CVE-2023-32066

Time Tracker is an open source time tracking system. The week view plugin in Time Tracker versions 1.22.11.5782 and prior was not escaping titles for notes in week view table. Because of that, it was possible for a logged in user to enter notes with elements of JavaScript. Such script could then ...

5.4CVSS6.5AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:34 p.m.6 views

CVE-2021-34883

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

4.3CVSS6AI score0.0161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:34 p.m.9 views

CVE-2021-34944

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

4.3CVSS6AI score0.01644EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:33 p.m.6 views

CVE-2021-34916

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

4.3CVSS6AI score0.01521EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:32 p.m.7 views

CVE-2021-34897

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS6.9AI score0.02113EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:52 p.m.11 views

CVE-2021-34905

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS6.8AI score0.02123EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:52 p.m.7 views

CVE-2021-34886

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

4.3CVSS6.1AI score0.01603EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:52 p.m.7 views

CVE-2021-34894

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS6.8AI score0.02103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:9 p.m.7 views

CVE-2021-21260

Online Invoicing System OIS is open source software which is a lean invoicing system for small businesses, consultants and freelancers created using AppGini. In OIS version 4.0 there is a stored XSS which can enables an attacker takeover of the admin account through a payload that extracts a csrf...

7.6CVSS6.2AI score0.00596EPSS
Exploits1References1
Rows per page
Query Builder