Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-12374

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00494EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33764

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00913EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33765

Malicious code in bioql PyPI...

9.1CVSS8.2AI score0.01089EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:15 a.m.5 views

CVE-2023-2259

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

9.1CVSS6.7AI score0.01089EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:8 a.m.5 views

CVE-2023-2260

Authorization Bypass Through User-Controlled Key in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

8.8CVSS6.7AI score0.00859EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:54 a.m.5 views

CVE-2023-0300

Cross-site Scripting XSS - Reflected in GitHub repository alfio-event/alf.io prior to 2.0-M4-2301...

5.4CVSS6.1AI score0.00494EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:48 a.m.9 views

CVE-2023-2258

Improper Neutralization of Formula Elements in a CSV File in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

8.8CVSS6.8AI score0.00913EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/04/24 12:0 a.m.9 views

CVE-2023-2258 Improper Neutralization of Formula Elements in a CSV File in alfio-event/alf.io

Improper Neutralization of Formula Elements in a CSV File in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

8.8CVSS8.8AI score0.00913EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/24 12:0 a.m.8 views

CVE-2023-2259 Improper Neutralization of Special Elements Used in a Template Engine in alfio-event/alf.io

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

9.1CVSS7AI score0.01089EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.5 views

PT-2023-18577 · Alf.Io · Alf.Io

Name of the Vulnerable Software and Affected Versions: alfio-event/alf.io versions prior to 2.0-M4-2304 Description: The issue concerns an improper authorization of an index containing sensitive information. This could potentially allow for an authorization bypass through a user-controlled key...

8.8CVSS8.6AI score0.00859EPSS
Exploits1References6
CVE
CVE
added 2023/04/24 12:0 a.m.50 views

CVE-2023-2260

CVE-2023-2260 affects alfio-event/alf.io prior to 2.0-M4-2304. The related documents describe an authorization bypass through a user-controlled key that risks exposing an index containing sensitive information. Impact is described as high for confidentiality, integrity, and availability, with CVS...

8.8CVSS8.8AI score0.00859EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.6 views

PT-2023-18572 · Alf.Io · Alf.Io

Name of the Vulnerable Software and Affected Versions: alfio-event/alf.io versions prior to 2.0-M4-2304 Description: The issue is related to the improper neutralization of special elements used in a template engine. This problem affects the GitHub repository alfio-event/alf.io. Recommendations: F...

9.1CVSS7.9AI score0.01089EPSS
Exploits1References7
Cvelist
Cvelist
added 2023/04/24 12:0 a.m.27 views

CVE-2023-2258 Improper Neutralization of Formula Elements in a CSV File in alfio-event/alf.io

Improper Neutralization of Formula Elements in a CSV File in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

8.8CVSS8.9AI score0.00913EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/24 12:0 a.m.10 views

CVE-2023-2260 Authorization Bypass Through User-Controlled Key in alfio-event/alf.io

Authorization Bypass Through User-Controlled Key in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304...

8.8CVSS8.8AI score0.00859EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/01/14 12:0 a.m.5 views

CVE-2023-0300 Cross-site Scripting (XSS) - Reflected in alfio-event/alf.io

Cross-site Scripting XSS - Reflected in GitHub repository alfio-event/alf.io prior to 2.0-M4-2301...

3.5CVSS5.4AI score0.00494EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/01/14 12:0 a.m.9 views

CVE-2023-0301 Cross-site Scripting (XSS) - Stored in alfio-event/alf.io

Cross-site Scripting XSS - Stored in GitHub repository alfio-event/alf.io prior to Alf.io 2.0-M4-2301...

4.3CVSS5.3AI score0.00481EPSS
Exploits1References2
CVE
CVE
added 2023/01/14 12:0 a.m.63 views

CVE-2023-0300

CVE-2023-0300 is a reflected XSS in alf.io (alfio-event/alf.io) prior to version 2.0-M4-2301. The root cause is improper handling/encoding of user-controlled input in the Groups component, enabling HTML/script injection in responses. Impact is limited to browsers where the input is reflected, wit...

5.4CVSS4.5AI score0.00494EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/01/14 12:0 a.m.11 views

CVE-2023-0300 Cross-site Scripting (XSS) - Reflected in alfio-event/alf.io

Cross-site Scripting XSS - Reflected in GitHub repository alfio-event/alf.io prior to 2.0-M4-2301...

3.5CVSS4.5AI score0.00494EPSS
Exploits1References4
CVE
CVE
added 2023/01/14 12:0 a.m.54 views

CVE-2023-0301

CVE-2023-0301 describes a stored Cross-site Scripting (XSS) vulnerability in the Alf.io event/markdown feature, reported to affect Alf.io versions prior to 2.0-M4-2301. The issue arises from user-supplied content in the GitHub repository alfio-event/alf.io, allowing an attacker to inject scripts ...

5.4CVSS4.8AI score0.00481EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder