Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-4146

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.03016EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2022/05/13 1:22 a.m.34 views

Command Injection in VIVO Vitro

SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker to execute arbitrary SPARQL via the uri parameter, leading to a regular expression denial of service ReDoS, as demonstrated by crafted use of FILTER%20regex in a /individual?uri= request...

7.5CVSS7.9AI score0.03016EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2022/05/13 1:22 a.m.18 views

GHSA-HGQ9-Q8G2-3JMG Command Injection in VIVO Vitro

SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker to execute arbitrary SPARQL via the uri parameter, leading to a regular expression denial of service ReDoS, as demonstrated by crafted use of FILTER%20regex in a /individual?uri= request...

7.5CVSS7.8AI score0.03016EPSS
Exploits1References7
Prion
Prion
added 2019/01/28 3:29 p.m.15 views

Sql injection

SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker to execute arbitrary SPARQL via the uri parameter, leading to a regular expression denial of service ReDoS, as demonstrated by crafted use of FILTER%20regex in a /individual?uri= request...

5CVSS7.9AI score0.03016EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2019/01/28 3:29 p.m.18 views

CVE-2019-6986

SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker to execute arbitrary SPARQL via the uri parameter, leading to a regular expression denial of service ReDoS, as demonstrated by crafted use of FILTER%20regex in a /individual?uri= request...

7.5CVSS7.8AI score
Exploits0References3
NVD
NVD
added 2019/01/28 3:29 p.m.16 views

CVE-2019-6986

SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker to execute arbitrary SPARQL via the uri parameter, leading to a regular expression denial of service ReDoS, as demonstrated by crafted use of FILTER%20regex in a /individual?uri= request...

7.5CVSS7.8AI score0.03016EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/01/28 3:0 p.m.18 views

CVE-2019-6986

SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker to execute arbitrary SPARQL via the uri parameter, leading to a regular expression denial of service ReDoS, as demonstrated by crafted use of FILTER%20regex in a /individual?uri= request...

7.8AI score0.03016EPSS
Exploits1References3
CVE
CVE
added 2019/01/28 3:0 p.m.66 views

CVE-2019-6986

CVE-2019-6986 describes a SPARQL Injection in VIVO Vitro v1.10.0 where a remote attacker can craft a request to the endpoint “/individual?uri=” to execute arbitrary SPARQL, leading to a Regular Expression Denial of Service (ReDoS) via crafted FILTER%20regex usage. Affected product/component: VIVO...

7.5CVSS7.8AI score0.03016EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/01/28 12:0 a.m.10 views

PT-2019-18400 · Vivo · Vivo Vitro

Name of the Vulnerable Software and Affected Versions: VIVO Vitro version 1.10.0 Description: The issue allows a remote attacker to execute arbitrary SPARQL via the uri parameter, potentially leading to a regular expression denial of service ReDoS. This can be achieved by crafting a specific...

7.5CVSS7.7AI score0.03016EPSS
Exploits1References10
Rows per page
Query Builder