Lucene search
+L

6 matches found

EUVD
EUVD
added 2026/06/26 12:32 a.m.8 views

EUVD-2025-210341

Flowise before 3.0.10 affected versions 3.0.7 and earlier fails to invalidate existing sessions and session tokens after a user changes their password. An attacker who already holds an active session, for example via a stolen session token or a device left logged in, remains authenticated as the...

8.6CVSS5.9AI score0.00266EPSS
Exploits1References3
NVD
NVD
added 2026/06/25 10:16 p.m.9 views

CVE-2025-71335

Flowise before 3.0.10 affected versions 3.0.7 and earlier fails to invalidate existing sessions and session tokens after a user changes their password. An attacker who already holds an active session, for example via a stolen session token or a device left logged in, remains authenticated as the...

8.6CVSS0.00266EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/14 8:9 a.m.7 views

CVE-2026-33929 Apache PDFBox Examples: Path Traversal in PDFBox ExtractEmbeddedFiles Example Code

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache PDFBox Examples. This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.36, from 3.0.0 through 3.0.7. Users are recommended to update to version 2.0.37 or...

5.8AI score0.00711EPSS
Exploits0References3
OSV
OSV
added 2025/01/14 7:15 p.m.4 views

CVE-2025-21133

Illustrator on iPad versions 3.0.7 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00251EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.4 views

PT-2025-1289 · Adobe · Illustrator

Name of the Vulnerable Software and Affected Versions: Adobe Illustrator versions 3.0.7 and earlier Description: The issue is related to an Integer Underflow Wrap or Wraparound that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires us...

7.8CVSS8AI score0.00251EPSS
Exploits0References7
OSV
OSV
added 2024/10/17 6:15 p.m.4 views

CVE-2024-49312

Server-Side Request Forgery SSRF vulnerability in WisdmLabs Edwiser Bridge.This issue affects Edwiser Bridge: from n/a through 3.0.7...

8.6CVSS5.8AI score0.00225EPSS
Exploits0References1
Rows per page
Query Builder