Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-44378

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0057EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-54461

Malicious code in bioql PyPI...

8.7CVSS6.5AI score0.00555EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/10 1:14 p.m.23 views

CVE-2024-6648

Absolute Path Traversal vulnerability in AP Page Builder versions prior to 4.0.0 could allow an unauthenticated remote user to modify the 'productitempath' within the 'config' JSON file, allowing them to read any file on the system...

8.7CVSS6.9AI score0.00555EPSS
Exploits1References3
NVD
NVD
added 2025/05/08 1:15 p.m.28 views

CVE-2024-6648

Absolute Path Traversal vulnerability in AP Page Builder versions prior to 4.0.0 could allow an unauthenticated remote user to modify the 'productitempath' within the 'config' JSON file, allowing them to read any file on the system...

8.7CVSS0.00555EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/08 12:16 p.m.14 views

CVE-2024-6648 Path Traversal in AP Page Builder

Absolute Path Traversal vulnerability in AP Page Builder versions prior to 4.0.0 could allow an unauthenticated remote user to modify the 'productitempath' within the 'config' JSON file, allowing them to read any file on the system...

8.7CVSS6.6AI score0.00555EPSS
Exploits1References1
CVE
CVE
added 2025/05/08 12:16 p.m.88 views

CVE-2024-6648

CVE-2024-6648 describes an Absolute Path Traversal in AP Page Builder (AP Page Builder plugin) for versions prior to 4.0.0. An unauthenticated remote attacker could modify the product_item_path in the config JSON, enabling reading arbitrary files on the system. Affected: AP Page Builder

8.7CVSS6.6AI score0.00555EPSS
In wildExploits1References1Affected Software1
Cvelist
Cvelist
added 2025/05/08 12:16 p.m.28 views

CVE-2024-6648 Path Traversal in AP Page Builder

Absolute Path Traversal vulnerability in AP Page Builder versions prior to 4.0.0 could allow an unauthenticated remote user to modify the 'productitempath' within the 'config' JSON file, allowing them to read any file on the system...

8.7CVSS0.00555EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/08 12:0 a.m.12 views

PT-2025-20380

Name of the Vulnerable Software and Affected Versions AP Page Builder versions prior to 4.0.0 Description The issue is an Absolute Path Traversal vulnerability that could allow an unauthenticated remote user to modify the product item path within the config JSON file, allowing them to read any fi...

8.7CVSS5.9AI score0.00555EPSS
Exploits1References11
OSV
OSV
added 2023/07/18 12:15 p.m.3 views

CVE-2023-3743

Ap Page Builder, in versions lower than 1.7.8.2, could allow a remote attacker to send a specially crafted SQL query to the productoneimg parameter to retrieve the information stored in the database...

7.5CVSS5.8AI score0.0057EPSS
Exploits0References1
Prion
Prion
added 2023/07/18 12:15 p.m.18 views

Design/Logic Flaw

Ap Page Builder, in versions lower than 1.7.8.2, could allow a remote attacker to send a specially crafted SQL query to the productoneimg parameter to retrieve the information stored in the database...

5CVSS7.5AI score0.0057EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/18 11:56 a.m.29 views

CVE-2023-3743 SQL injection vulnerability in LeoTheme's Ap Page Builder

Ap Page Builder, in versions lower than 1.7.8.2, could allow a remote attacker to send a specially crafted SQL query to the productoneimg parameter to retrieve the information stored in the database...

7.5CVSS7.7AI score0.0057EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/18 11:56 a.m.16 views

CVE-2023-3743 SQL injection vulnerability in LeoTheme's Ap Page Builder

Ap Page Builder, in versions lower than 1.7.8.2, could allow a remote attacker to send a specially crafted SQL query to the productoneimg parameter to retrieve the information stored in the database...

7.5CVSS7AI score0.0057EPSS
Exploits0References1
CVE
CVE
added 2023/07/18 11:56 a.m.51 views

CVE-2023-3743

Summary: CVE-2023-3743 affects LeoTheme’s Ap Page Builder for Prestashop, with versions prior to 1.7.8.2 vulnerable to a SQL injection via the product_one_img parameter, allowing a remote attacker to retrieve data from the database. The root cause is improper handling of user-supplied input in th...

7.5CVSS7.5AI score0.0057EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder