Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2024-54857

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00456EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/08/09 12:23 a.m.5 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

6.5CVSS7.8AI score0.00456EPSS
Exploits0References1
NVD
NVDadded 2025/08/07 5:15 p.m.4 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

6.5CVSS0.00456EPSS
Exploits0References9
Cvelist
Cvelistadded 2025/08/07 12:0 a.m.8 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

0.00456EPSS
Exploits0References9
CNNVD
CNNVDadded 2025/08/07 12:0 a.m.2 views

OpenOrange Business Framework 安全漏洞

OpenOrange Business Framework is a business application framework from OpenOrange, Inc. A security vulnerability exists in OpenOrange Business Framework version 1.15.5 that originates from providing write access to the installation directory to an unprivileged user...

6.5CVSS6.8AI score0.00456EPSS
Exploits0References10
Vulnrichment
Vulnrichmentadded 2025/08/07 12:0 a.m.4 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

7.3AI score0.00456EPSS
Exploits0References9
CVE
CVEadded 2025/08/07 12:0 a.m.19 views

CVE-2024-42048

OpenOrange Business Framework v1.15.5 permits unprivileged write access to its installation directory, enabling DLL hijacking due to loading DLLs from that path. This could lead to arbitrary code execution and privilege escalation, per CVE-2024-42048 and linked sources. No remediation details are...

6.5CVSS7.3AI score0.00456EPSS
Exploits0References9
OSV
OSVadded 2025/04/15 9:16 p.m.3 views

CVE-2025-30718

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments, File Upload. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2023/02/14 4:15 a.m.1 views

CVE-2023-24521

Due to insufficient input sanitization, SAP NetWeaver AS ABAP BSP Framework - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, allows an unauthenticated user to alter the current session of the user by injecting the malicious code over the network and gain access to the...

6.1CVSS6.4AI score0.01438EPSS
Exploits0References2
Rows per page
Query Builder