Lucene search
K

28 matches found

Cvelist
Cvelist
added 2026/04/21 7:43 p.m.32 views

CVE-2026-40903 Goshs - ArtiPACKED Vulnerability – GitHub Actions Credential Persistence

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs has an ArtiPACKED vulnerability. ArtiPACKED can lead to leakage of the GITHUBTOKEN through workflow artifacts, even though the token is not present in the repository source code. This vulnerability is fixed in 2.0.0-beta.6...

9.1CVSS0.00245EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.11 views

PT-2026-34060

Name of the Vulnerable Software and Affected Versions goshs versions prior to 2.0.0-beta.6 Description goshs is a SimpleHTTPServer written in Go. An ArtiPACKED issue allows the leakage of the GITHUB TOKEN through workflow artifacts, even when the token is not included in the repository source cod...

9.1CVSS5.8AI score0.00245EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/19 9:10 a.m.10 views

CVE-2025-12078

The ArtiBot Free Chat Bot for WebSites plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PostMessage in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.1CVSS5.6AI score0.00175EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/18 9:30 a.m.2 views

EUVD-2025-197933

The ArtiBot Free Chat Bot for WebSites plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PostMessage in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.1CVSS5.2AI score0.00175EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/11/17 11:2 p.m.5 views

WordPress ArtiBot Free Chat Bot for WebSites plugin <= 1.1.7 - Reflected Cross-Site Scripting via PostMessage vulnerability

Reflected Cross-Site Scripting via PostMessage vulnerability discovered by Nicolai Hellesnes nico in WordPress Plugin ArtiBot versions = 1.1.7...

6.1CVSS6.3AI score0.00175EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-1535

Malicious code in bioql PyPI...

6.2CVSS6.3AI score0.00186EPSS
Exploits0References10
OSV
OSV
added 2024/05/18 12:30 a.m.9 views

GHSA-9328-GCFQ-P269 Tor Arti's STUB circuits incorrectly have a length of 2

In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards, aka TROVE-2024-003...

7.5CVSS6.4AI score0.00298EPSS
Exploits0References10
OSV
OSV
added 2024/05/18 12:30 a.m.9 views

GHSA-C96H-CXX6-RMG9 Tor path lengths too short when "full Vanguards" configured

In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 with full vanguards, aka TROVE-2024-004...

5.9CVSS6.4AI score0.00298EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2024/05/18 12:30 a.m.16 views

Tor path lengths too short when "full Vanguards" configured

In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 with full vanguards, aka TROVE-2024-004...

7.3CVSS7.1AI score0.00298EPSS
Exploits0References9Affected Software2
Github Security Blog
Github Security Blog
added 2024/05/18 12:30 a.m.18 views

Tor Arti's STUB circuits incorrectly have a length of 2

In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards, aka TROVE-2024-003...

6.2CVSS7.1AI score0.00186EPSS
Exploits0References10Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/05/18 12:0 a.m.11 views

FreeBSD : Arti -- Security issues related to circuit construction (f393b5a7-1535-11ef-8064-c5610a6efffb)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the f393b5a7-1535-11ef-8064-c5610a6efffb advisory. - In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards,...

7.3CVSS5.6AI score0.00298EPSS
Exploits0References5
OSV
OSV
added 2024/05/17 10:15 p.m.10 views

CVE-2024-35313

In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 with full vanguards, aka TROVE-2024-004...

7.3CVSS6.9AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 2024/05/17 10:15 p.m.10 views

CVE-2024-35313

In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 with full vanguards, aka TROVE-2024-004...

7.3CVSS6.4AI score0.00298EPSS
Exploits0References1
NVD
NVD
added 2024/05/17 10:15 p.m.10 views

CVE-2024-35312

In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards, aka TROVE-2024-003...

6.2CVSS6.4AI score0.00186EPSS
Exploits0References1
OSV
OSV
added 2024/05/17 10:15 p.m.10 views

CVE-2024-35312

In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards, aka TROVE-2024-003...

6.2CVSS6.9AI score0.00298EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 9:29 p.m.30 views

CVE-2024-35313

In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 with full vanguards, aka TROVE-2024-004...

6.3AI score0.00298EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 9:29 p.m.95 views

CVE-2024-35313

CVE-2024-35313 affects Tor Arti prior to 1.2.3, where circuits may incorrectly have a length of 3 when full vanguards are used (aka TROVE-2024-004). The vulnerability is documented with CVSS v3.1 base score 7.3 (Network, High, Privileges=None, User Interaction=None; Confidentiality/Integrity/Avai...

7.3CVSS6.5AI score0.00298EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 9:29 p.m.12 views

CVE-2024-35313

In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 with full vanguards, aka TROVE-2024-004...

6.7AI score0.00298EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 9:29 p.m.10 views

CVE-2024-35312

In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards, aka TROVE-2024-003...

6.8AI score0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 9:29 p.m.34 views

CVE-2024-35312

In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 with lite vanguards, aka TROVE-2024-003...

6.3AI score0.00186EPSS
Exploits0References1
Rows per page
Query Builder