Lucene search
K

181 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-8488

Malware in sbrugna...

10CVSS9.4AI score0.0319EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.28 views

EUVD-2022-51060

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.004EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-37274

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00118EPSS
Exploits0References1
Snyk
Snyk
added 2025/09/25 3:43 p.m.2 views

Always-Incorrect Control Flow Implementation

Overview Affected versions of this package are vulnerable to Always-Incorrect Control Flow Implementation when compiling model with torch.rot90 and torch.randnlike functions while backend="aoteagerdecomppartition". An attacker can cause unexpected behavior or potentially manipulate outputs by...

5.3CVSS7AI score0.0039EPSS
Exploits0References2
Veracode
Veracode
added 2025/09/05 10:12 a.m.9 views

Open Redirection

@astrojs/node is vulnerable to Open Redirection. The vulnerability is due to incorrect handling of double slashes with the Node deployment adapter in standalone mode and trailingSlash set to "always," allowing attackers to redirect users to malicious domains...

6.9CVSS6.9AI score0.00534EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/08/29 3:7 p.m.27 views

CVE-2025-54877

Tuleap CVE-2025-54877 affects Community Edition <16.10.99.1754050155 and Enterprise Edition <16.9-8 and

5.3CVSS6.3AI score0.00275EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.10 views

PT-2025-35223

Name of the Vulnerable Software and Affected Versions: Tuleap Community Edition versions prior to 16.10.99.1754050155 Tuleap Enterprise Edition versions prior to 16.9-8 Tuleap Enterprise Edition versions prior to 16.10-5 Description: Tuleap is an Open Source Suite created to facilitate management...

5.3CVSS6.3AI score0.00275EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2025/08/15 4:52 p.m.11 views

@astrojs/node's trailing slash handling causes open redirect issue

Summary Following https://github.com/withastro/astro/security/advisories/GHSA-cq8c-xv66-36gw, there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios. Details Astro 5.12.8 fixed a case where https://example.com//astro.build/press would redirect to the external origi...

6.9CVSS7.2AI score0.00534EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/08/15 4:52 p.m.4 views

GHSA-9X9C-GHC5-JHW9 @astrojs/node's trailing slash handling causes open redirect issue

Summary Following https://github.com/withastro/astro/security/advisories/GHSA-cq8c-xv66-36gw, there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios. Details Astro 5.12.8 fixed a case where https://example.com//astro.build/press would redirect to the external origi...

6.9CVSS7.2AI score0.00534EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/15 3:13 p.m.15 views

CVE-2025-55207 @astrojs/node's trailing slash handling causes open redirect issue

Astro is a web framework for content-driven websites. Following CVE-2025-54793 there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios prior to version 9.4.1. Astro 5.12.8 addressed CVE-2025-54793 where https://example.com//astro.build/press would redirect to the...

6.9CVSS0.00534EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/15 3:13 p.m.4 views

CVE-2025-55207 @astrojs/node's trailing slash handling causes open redirect issue

Astro is a web framework for content-driven websites. Following CVE-2025-54793 there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios prior to version 9.4.1. Astro 5.12.8 addressed CVE-2025-54793 where https://example.com//astro.build/press would redirect to the...

6.9CVSS6.9AI score0.00534EPSS
Exploits0References2
CVE
CVE
added 2025/08/15 3:13 p.m.18 views

CVE-2025-55207

Astro CVE-2025-55207 describes an Open Redirect vulnerability in certain Astro deployment scenarios. Specifically, when using the Node deployment adapter in standalone mode with trailingSlash set to "always", URLs like https://example.com//astro.build/press can redirect to //astro.build/press, en...

6.9CVSS6AI score0.00534EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.5 views

PT-2025-33494 · Astro · Astro

Name of the Vulnerable Software and Affected Versions: Astro versions prior to 9.4.1 Description: Astro is a web framework for content-driven websites. An open redirect vulnerability exists in certain Astro deployment scenarios. Specifically, when using the Node deployment adapter in standalone...

6.9CVSS7.1AI score0.00534EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2025/08/11 11:7 p.m.11 views

Litestar has potential log injection in exception logging

Summary Litestar does not escape url paths when logging exceptions. This makes logger vulnerable to CRLF injection if logging level is configured to debug or logexceptions is set to "always", which allows attackers to inject newlines and forge log entries. Details Litestar directly formats unquot...

7.3AI score
Exploits0References3Affected Software1
Microsoft CVE
Microsoft CVE
added 2025/08/06 7:0 a.m.7 views

Apache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64

...

6.3CVSS7AI score0.00691EPSS
Exploits0
FreeBSD
FreeBSD
added 2025/07/23 12:0 a.m.28 views

Apache httpd -- evaluation always true

The Apache httpd project reports: 'RewriteCond expr' always evaluates to true in 2.4.64...

6.3CVSS6.6AI score0.00691EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/07/21 12:0 a.m.5 views

Pulse-Level Simulation of Crosstalk Attacks on Superconducting Quantum Hardware

Hardware crosstalk in multi-tenant superconducting quantum computers poses a severe security threat, allowing adversaries to induce targeted errors across tenant boundaries by injecting carefully engineered pulses. We present a simulation-based study of active crosstalk attacks at the pulse level...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/18 3:32 a.m.2 views

Malicious code in always-target (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
OSV
OSV
added 2025/06/18 3:32 a.m.2 views

MAL-2025-5360 Malicious code in always-target (npm)

The package communicates with a domain associated with malicious activity...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 12:25 a.m.21 views

CVE-2022-48361

The Always On Display AOD has a path traversal vulnerability in theme files. Successful exploitation of this vulnerability may cause a failure in reading AOD theme resources...

5.3CVSS6.9AI score0.004EPSS
Exploits0
Rows per page
Query Builder