Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-37530

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00974EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-6429

Malicious code in bioql PyPI...

4.8CVSS5AI score0.0091EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 11:2 p.m.4 views

CVE-2022-34578

Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page...

7.2CVSS7.6AI score0.00974EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/07/28 8:15 p.m.1 views

CVE-2022-34578

Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page...

7.2CVSS6AI score0.00974EPSS
Exploits1References2
NVD
NVD
added 2022/07/28 8:15 p.m.8 views

CVE-2022-34578

Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page...

7.2CVSS0.00974EPSS
Exploits1References1
OSV
OSV
added 2022/07/28 8:15 p.m.16 views

CVE-2022-34578

Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page...

7.2CVSS7.5AI score
Exploits0References1
Prion
Prion
added 2022/07/28 8:15 p.m.11 views

Design/Logic Flaw

Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page...

5.8CVSS7.1AI score0.00974EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/07/28 7:38 p.m.72 views

CVE-2022-34578

CVE-2022-34578 affects Open Source Point of Sale (OSPOS) v3.3.7. Reported as an arbitrary file upload vulnerability via the Update Branding Settings page; root cause not detailed in the provided sources beyond the upload flaw. No explicit exploit in the supplied documents; no patch version or wor...

7.2CVSS7.1AI score0.00974EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/07/28 7:38 p.m.21 views

CVE-2022-34578

Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page...

7.3AI score0.00974EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/07/28 12:0 a.m.4 views

Open Source Point of Sale 代码问题漏洞

Open Source Point of Sale is a web-based point of sale system. A security vulnerability exists in Open Source Point of Sale version v3.3.7, which stems from an arbitrary file upload vulnerability discovered via the Update Branding Settings page...

7.2CVSS7.2AI score0.00974EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/07/28 12:0 a.m.4 views

PT-2022-22217 · Unknown · Open Source Point Of Sale

Name of the Vulnerable Software and Affected Versions: Open Source Point of Sale version 3.3.7 Description: The issue is related to an arbitrary file upload vulnerability. This vulnerability can be exploited via the Update Branding Settings page. Recommendations: For Open Source Point of Sale...

7.2CVSS6.9AI score0.00974EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/07/08 12:0 a.m.35 views

Snipe-IT 6.0.2 vulnerable to Cross-site Scripting via arbitrary file upload in Update Branding Settings

An arbitrary file upload vulnerability in the Update Branding Settings component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS6.3AI score0.0091EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/07/07 11:15 p.m.28 views

CVE-2022-32060

An arbitrary file upload vulnerability in the Update Branding Settings component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS0.0091EPSS
Exploits1References2
OSV
OSV
added 2022/07/07 11:15 p.m.20 views

CVE-2022-32060

An arbitrary file upload vulnerability in the Update Branding Settings component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS5.7AI score0.0091EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/07/07 11:15 p.m.1 views

CVE-2022-32060

An arbitrary file upload vulnerability in the Update Branding Settings component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS5.7AI score0.0091EPSS
Exploits1References3
Prion
Prion
added 2022/07/07 11:15 p.m.16 views

Design/Logic Flaw

An arbitrary file upload vulnerability in the Update Branding Settings component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

3.5CVSS5.6AI score0.0091EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/07/07 12:0 a.m.4 views

PT-2022-21083 · Snipe-It · Snipe-It

Name of the Vulnerable Software and Affected Versions: Snipe-IT version 6.0.2 Description: The issue allows attackers to execute arbitrary code via a crafted file, exploiting an arbitrary file upload vulnerability in the Update Branding Settings component. Recommendations: For Snipe-IT version...

4.8CVSS5.5AI score0.0091EPSS
Exploits1References8
CNNVD
CNNVD
added 2022/07/07 12:0 a.m.6 views

Snipe-IT 跨站脚本漏洞

Snipe-IT is an open source IT asset/license management system. A security vulnerability exists in Snipe-IT version v6.0.2, which originates from a malicious file that can be uploaded on the Update Branding Settings page and can be exploited by an attacker to execute arbitrary code...

4.8CVSS5.7AI score0.0091EPSS
Exploits1References3
CVE
CVE
added 2022/07/07 12:0 a.m.97 views

CVE-2022-32060

CVE-2022-32060 affects Snipe-IT 6.0.2, with an arbitrary file upload vulnerability in the Update Branding Settings component. Connected sources attribute the root cause to inadequate validation in the Update Branding Settings handling (store function), enabling an attacker to upload a crafted fil...

4.8CVSS5.6AI score0.0091EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2020/02/10 12:15 p.m.25 views

CVE-2020-8825

index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 allows stored XSS...

5.4CVSS6.5AI score0.01875EPSS
Exploits5References2
Rows per page
Query Builder