Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-3470

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.0041EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 7:41 a.m.7 views

CVE-2024-55500

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

8.8CVSS7.6AI score0.0041EPSS
Exploits0References1
Veracode
Veracode
added 2024/12/20 6:7 a.m.10 views

Cross-Site Request Forgery (CSRF)

Avenwu Whistle is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to insufficient validation of API requests, allowing attackers to perform malicious API calls that result in arbitrary code execution on the victim's machine...

8.8CVSS7.6AI score0.0041EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/12/10 9:30 p.m.29 views

Avenwu Whistle Cross-Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

8.8CVSS7.6AI score0.0041EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/12/10 9:30 p.m.15 views

GHSA-GG6X-448Q-PQQM Avenwu Whistle Cross-Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

8.7CVSS9AI score0.0041EPSS
Exploits0References4
NVD
NVD
added 2024/12/10 7:15 p.m.23 views

CVE-2024-55500

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

8.8CVSS0.0041EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/10 12:0 a.m.20 views

CVE-2024-55500

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

0.0041EPSS
Exploits0References2
CVE
CVE
added 2024/12/10 12:0 a.m.123 views

CVE-2024-55500

CVE-2024-55500 concerns CSRF in Avenwu Whistle (v2.9.90 and earlier). Affected component: the Avenwu Whistle API surface where requests lack proper origin/validation, enabling attackers to craft requests that trigger arbitrary code execution on the victim’s machine. Root cause, as described acros...

8.8CVSS7.4AI score0.0041EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/10 12:0 a.m.8 views

CVE-2024-55500

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

9.1AI score0.0041EPSS
Exploits0References2
OSV
OSV
added 2024/12/10 12:0 a.m.5 views

CVE-2024-55500

Cross-Site Request Forgery CSRF in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine...

8.8CVSS7.5AI score0.0041EPSS
Exploits0References4
Rows per page
Query Builder