Lucene search
K

187 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-49574

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00214EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-49231

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00412EPSS
Exploits0References2
OSV
OSV
added 2025/09/17 5:15 p.m.3 views

CVE-2025-59304

A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...

9.8CVSS7.5AI score0.03226EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.5 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS7.3AI score0.00385EPSS
Exploits0References1
CVE
CVE
added 2025/09/17 12:0 a.m.24 views

CVE-2025-59304

Summary: CVE-2025-59304 describes a directory traversal in Swetrix Web Analytics API 3.1.1 before 7d8b972 that enables a remote attacker to achieve Remote Code Execution via a crafted HTTP request. The issue stems from a path traversal vulnerability in the API, with an impact described as high ac...

9.8CVSS7AI score0.03226EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/17 12:0 a.m.2 views

CVE-2025-59304

A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...

7AI score0.03226EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/09/17 12:0 a.m.7 views

CVE-2025-59304

A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...

0.03226EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/09/17 12:0 a.m.7 views

PT-2025-38227

Name of the Vulnerable Software and Affected Versions Swetrix Web Analytics API versions prior to 7d8b972 Description A directory traversal issue exists in Swetrix Web Analytics API 3.1.1 before commit 7d8b972. This allows a remote attacker to achieve Remote Code Execution via a crafted HTTP...

9.8CVSS7.1AI score0.03226EPSS
Exploits1References8
OSV
OSV
added 2025/09/15 6:31 p.m.2 views

GHSA-6W8R-XGQQ-QG6G Open Web Analytics Server is vulnerable to SQL Injection

Open Web Analytics OWA before 1.8.1 allows SQL injection...

5CVSS7.6AI score0.00385EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2025/09/15 6:31 p.m.6 views

Open Web Analytics Server is vulnerable to SQL Injection

Open Web Analytics OWA before 1.8.1 allows SQL injection...

5CVSS7.6AI score0.00385EPSS
Exploits0References8Affected Software1
Snyk
Snyk
added 2025/09/15 4:44 p.m.2 views

SQL Injection

Overview open-web-analytics/open-web-analytics is an open source analytics framework. Affected versions of this package are vulnerable to SQL Injection via the query process. An attacker can access sensitive information from the database by injecting crafted SQL statements. Remediation Upgrade...

6.9CVSS7.5AI score0.00385EPSS
Exploits0References2
OSV
OSV
added 2025/09/15 4:15 p.m.3 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS7.3AI score0.00385EPSS
Exploits0References7
NVD
NVD
added 2025/09/15 4:15 p.m.5 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS0.00385EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.6 views

PT-2025-37722

Name of the Vulnerable Software and Affected Versions Open Web Analytics versions prior to 1.8.1 Description Open Web Analytics OWA before version 1.8.1 is susceptible to SQL injection. Recommendations Update to version 1.8.1 or later...

5CVSS7AI score0.00385EPSS
Exploits0References14
CVE
CVE
added 2025/09/15 12:0 a.m.12 views

CVE-2025-59397

CVE-2025-59397 concerns Open Web Analytics (OWA) prior to 1.8.1. The vulnerability is a SQL injection in the owa_db.php component via a v[value] input, impacting potentially data confidentiality as per the CVSS metrics (Confidentiality Impact: Low; no other impacts). Affected product/version: Ope...

5CVSS7AI score0.00385EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/09/15 12:0 a.m.1 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS7AI score0.00385EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/15 12:0 a.m.9 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS0.00385EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.2 views

Open Web Analytics Server SQL注入漏洞

Open Web Analytics Server is Open Web Analytics open source alternative for commercial web analytics tools such as Google Analytics. A SQL injection vulnerability exists in versions of Open Web Analytics Server prior to 1.8.1 that stems from vulnerability to SQL injection attacks...

5CVSS7.5AI score0.00385EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in cammy-web-analytics (npm)

The package cammy-web-analytics was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @moonpig/web-core-analytics (npm)

The package @moonpig/web-core-analytics was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
Rows per page
Query Builder