Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6262

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/15 11:22 a.m.8 views

CVE-2025-29995

This vulnerability exists in the CAP back office application due to a weak password-reset mechanism implemented at API endpoints. An authenticated remote attacker with a valid login ID could exploit this vulnerability through vulnerable API endpoint which could lead to account takeover of targete...

8.3CVSS6.9AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/15 11:21 a.m.12 views

CVE-2025-29994

This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to...

8.2CVSS7.4AI score0.00389EPSS
Exploits0References1
NVD
NVD
added 2025/03/13 12:15 p.m.14 views

CVE-2025-29997

This vulnerability exists in the CAP back office application due to improper authorization checks on certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating API request URL to gain unauthorized access to other user accounts...

8.2CVSS0.00337EPSS
Exploits0References1
NVD
NVD
added 2025/03/13 12:15 p.m.12 views

CVE-2025-29996

This vulnerability exists in the CAP back office application due to improper implementation of OTP verification mechanism in its API based login. A remote attacker with valid credentials could exploit this vulnerability by manipulating API request URL/payload. Successful exploitation of this...

8.2CVSS0.00409EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/13 11:21 a.m.7 views

CVE-2025-29997 Improper Access Control Vulnerability in CAP back office application

This vulnerability exists in the CAP back office application due to improper authorization checks on certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating API request URL to gain unauthorized access to other user accounts...

8.2CVSS6.6AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2025/03/13 11:16 a.m.74 views

CVE-2025-29995

The CVE-2025-29995 entry refers to a vulnerability in the CAP back office application caused by a weak password-reset mechanism implemented at API endpoints. An authenticated remote attacker with a valid login ID could exploit the vulnerable API endpoint to achieve account takeover of targeted us...

8.3CVSS6.3AI score0.00337EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/13 11:12 a.m.7 views

CVE-2025-29994 Improper Authentication Vulnerability in CAP back office application

This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to...

8.2CVSS6.8AI score0.00389EPSS
Exploits0References1
Rows per page
Query Builder