Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

HackRead
HackReadadded 2026/05/21 4:3 p.m.9 views

Deleted Google API Keys Remain Active up to 23 Minutes, Study Finds

Deleted Google API Keys remain active for up to 23 minutes after deletion, exposing GCP, Gemini, BigQuery, and Maps data to attackers...

5.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/11/11 9:31 a.m.1 views

CVE-2025-12397

A SQL injection vulnerability was found in Looker Studio. A Looker Studio user with report view access could inject malicious SQL that would execute with the report owner's permissions. The vulnerability affected to reports with BigQuery as the data source. This vulnerability was patched on 21 Ju...

7.6CVSS7.9AI score0.00032EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/11/11 9:31 a.m.0 views

CVE-2025-12409

A SQL injection vulnerability was discovered in Looker Studio that allowed for data exfiltration from BigQuery data sources. By creating a malicious report with native functions enabled, and having the victim access the report, an attacker could execute injected SQL queries with the victim's...

7.3CVSS8.1AI score0.00032EPSS
Exploits0References1
CVE
CVEadded 2025/11/10 8:59 a.m.5 views

CVE-2025-12409

Looker Studio SQL injection via malicious report with native functions enabled could exfiltrate data from BigQuery. By delivering a report and having the victim open it, an attacker could execute injected SQL queries using the victim’s BigQuery permissions. Affects Looker Studio components involv...

7.3CVSS7.7AI score0.00032EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/10 8:59 a.m.1 views

EUVD-2025-44038

A SQL injection vulnerability was discovered in Looker Studio that allowed for data exfiltration from BigQuery data sources. By creating a malicious report with native functions enabled, and having the victim access the report, an attacker could execute injected SQL queries with the victim's...

7.3CVSS7.6AI score0.00032EPSS
Exploits0References3
EUVD
EUVDadded 2025/11/10 8:55 a.m.1 views

EUVD-2025-44039

A SQL injection vulnerability was found in Looker Studio. A Looker Studio user with report view access could inject malicious SQL that would execute with the report owner's permissions. The vulnerability affected to reports with BigQuery as the data source. This vulnerability was patched on 21 Ju...

7.6CVSS7.4AI score0.00032EPSS
Exploits0References3
CVE
CVEadded 2025/11/10 8:55 a.m.3 views

CVE-2025-12397

CVE-2025-12397 is a SQL injection vulnerability in Looker Studio that affects reports using BigQuery as the data source. A Looker Studio user with report view access could inject malicious SQL that runs with the report owner’s permissions. The issue’s impact is tied to the data source and report ...

7.6CVSS7.5AI score0.00032EPSS
Exploits0References2
Rows per page
Query Builder