Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/13 6:57 p.m.8 views

CVE-2026-41255

CKAN is an open-source DMS data management system for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, Access to the views via tokens or unauthenticated requests marked the endpoint as not requiring CSRF protection. The marking was a member variable in flask-wtf.csrf.CSRFProtect,...

6.1CVSS5.8AI score0.00124EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2468

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.00377EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-2643

Malicious code in bioql PyPI...

6.8CVSS6.4AI score0.00377EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.11 views

CVE-2023-32696

CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user equivalent to www-data owned code and configuration files in the docker container and the ckan user had the permissions to use sudo. These issues allowed for co...

8.8CVSS7.8AI score0.00794EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/21 2:31 p.m.21 views

CVE-2024-41674 CKAN may leak Solr credentials via error message in package_search action

CKAN is an open-source data management system for powering data hubs and data portals. If there were connection issues with the Solr server, the internal Solr URL potentially including credentials could be leaked to packagesearch calls as part of the returned error message. This has been patched ...

5.3CVSS6.9AI score0.00377EPSS
Exploits0References2
Rows per page
Query Builder