Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-26868

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00489EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 7:24 p.m.3 views

Malicious code in @sber-business-id-kekw/srp (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/11 4:1 p.m.0 views

Malicious code in @sber-business-id/srp-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 74ef435b568b37df784ed252399339d031e51238e46c8a9374c85bec79773faa The OpenSSF Package Analysis project identified '@sber-business-id/srp-client' @ 2.0.0 npm as malicious. It is considered malicious because: - T...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:9 a.m.11 views

CVE-2023-2298

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'businessid' parameter in versions up to, and including, 4.3.0 due to insufficient input sanitization and output escaping. This makes it possible for...

7.2CVSS7AI score0.00607EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.18 views

PT-2024-23094 · Unknown · Sentrifugo

Name of the Vulnerable Software and Affected Versions: Sentrifugo version 3.2 Description: The issue is related to a SQL injection vulnerability. It could allow a remote user to send a specially crafted query to the server and extract all the data from it. The vulnerability is exploited through t...

9.8CVSS7.5AI score0.00856EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.6 views

Sentrifugo SQL注入漏洞

Sentrifugo is a human resource management system. The system includes functions for human resources management, performance appraisal, recruitment management and asset management. A SQL injection vulnerability exists in Sentrifugo version 3.2, which originates from the lack of validation of...

9.8CVSS8.1AI score0.00856EPSS
Exploits0References2
OSV
OSV
added 2023/06/03 5:15 a.m.5 views

CVE-2023-2298

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'businessid' parameter in versions up to, and including, 4.2.10 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS6.9AI score0.00607EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2023/06/03 5:15 a.m.3 views

CVE-2023-2298

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'businessid' parameter in versions up to, and including, 4.2.10 due to insufficient input sanitization and output escaping. This makes it possible for...

7.2CVSS7.4AI score0.00607EPSS
Exploits1References4
Rows per page
Query Builder