Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-29035

Malware in sbrugna...

6.5CVSS6.4AI score0.01395EPSS
Exploits1References4
OSV
OSV
added 2023/03/06 10:15 p.m.22 views

CVE-2021-36400

In Moodle, insufficient capability checks made it possible to remove other users' calendar URL subscriptions...

5.3CVSS5.5AI score
Exploits0References1
Prion
Prion
added 2023/03/06 10:15 p.m.24 views

Design/Logic Flaw

In Moodle, insufficient capability checks made it possible to remove other users' calendar URL subscriptions...

5CVSS5.1AI score0.00505EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/03/06 12:0 a.m.92 views

CVE-2021-36400

CVE-2021-36400 : In Moodle, insufficient capability checks made it possible to remove other users’ calendar URL subscriptions. The connected documents indicate the issue is a permissions flaw within the Moodle calendar subscriptions feature, with the CVSS base score 5.3 (Medium) and a leading imp...

5.3CVSS5AI score0.00505EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2021/05/21 10:15 p.m.5 views

PYSEC-2021-82

Plone through 5.2.4 allows remote authenticated managers to conduct SSRF attacks via an event ical URL, to read one line of a file...

4.3CVSS6.8AI score0.00992EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2020/03/20 9:15 p.m.13 views

CVE-2020-8138

A missing check for IPv4 nested inside IPv6 in Nextcloud server 17.0.1, 16.0.7, and 15.0.14 allowed a Server-Side Request Forgery SSRF vulnerability when subscribing to a malicious calendar URL...

6.5CVSS6.6AI score
Exploits0References2
Prion
Prion
added 2020/03/20 9:15 p.m.15 views

Server side request forgery (ssrf)

A missing check for IPv4 nested inside IPv6 in Nextcloud server 17.0.1, 16.0.7, and 15.0.14 allowed a Server-Side Request Forgery SSRF vulnerability when subscribing to a malicious calendar URL...

4CVSS6.3AI score0.01395EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder