Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-29039

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00776EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-14314

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00195EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2021-29038

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00924EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.5 views

PT-2025-34807 · Unknown · Abantecart

Name of the Vulnerable Software and Affected Versions: AbanteCart version 1.4.2 Description: A directory traversal issue exists in AbanteCart version 1.4.2 that allows unauthenticated attackers to access sensitive system files. This is achieved by manipulating the template parameter within the...

7.2AI score0.00907EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:19 a.m.8 views

CVE-2024-50801

A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update function in publichtml/admin/controller/responses/listinggrid/collections.php. The vulnerability is exploitable via the id parameter...

6CVSS8.2AI score0.0036EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:6 p.m.6 views

CVE-2021-42051

An issue was discovered in AbanteCart before 1.3.2. Any low-privileged user with file-upload permissions can upload a malicious SVG document that contains an XSS payload...

5.4CVSS6AI score0.00776EPSS
Exploits2
NVD
NVD
added 2025/05/12 12:15 p.m.27 views

CVE-2025-40626

Reflected Cross-Site Scripting XSS vulnerability in AbanteCart v1.4.0, that could allow an attacker to execute JavaScript code in a victim's browser by sending the victim a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform...

6.1CVSS0.00195EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/12 11:36 a.m.10 views

CVE-2025-40627 Reflected Cross-Site Scripting (XSS) in AbanteCart

Reflected Cross-Site Scripting XSS vulnerability in AbanteCart v1.4.0, that could allow an attacker to execute JavaScript code in a victim's browser by sending the victim a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform...

5.1CVSS5.6AI score0.00195EPSS
Exploits0References1
CVE
CVE
added 2025/05/12 11:36 a.m.52 views

CVE-2025-40627

CVE-2025-40627 affects AbanteCart v1.4.0. It describes a Reflected Cross‑Site Scripting (XSS) vulnerability in the /eyes? endpoint that lets an attacker deliver JavaScript to a victim’s browser, potentially stealing session cookies or acting on behalf of the user. The vulnerability is documented ...

6.1CVSS5.6AI score0.00195EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder