Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

17 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-23564

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.002EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-52213

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.0007EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/08/06 11:25 p.m.3 views

CVE-2025-8529

A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request...

6.5CVSS6.4AI score0.002EPSS
Exploits0References1
NVD
NVDadded 2025/08/04 11:15 p.m.2 views

CVE-2025-8529

A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request...

6.5CVSS0.002EPSS
Exploits0References5
OSV
OSVadded 2025/08/04 11:15 p.m.1 views

CVE-2025-8529

A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request...

5.3CVSS5.4AI score0.002EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/08/04 10:32 p.m.2 views

CVE-2025-8529 cloudfavorites favorites-web CollectController.java getCollectLogoUrl server-side request forgery

A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request...

6.5CVSS7.2AI score0.002EPSS
Exploits0References5
CVE
CVEadded 2025/08/04 10:32 p.m.9 views

CVE-2025-8529

CVE-2025-8529 affects cloudfavorites favorites-web up to version 1.3.0. The vulnerability concerns the getCollectLogoUrl function in app/src/main/java/com/favorites/web/CollectController.java, where improper handling of the url parameter enables server-side request forgery (SSRF). The issue can b...

6.5CVSS6.5AI score0.002EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/08/04 10:32 p.m.8 views

CVE-2025-8529 cloudfavorites favorites-web CollectController.java getCollectLogoUrl server-side request forgery

A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request...

6.5CVSS0.002EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/08/04 12:0 a.m.2 views

PT-2025-31876 · Unknown · Cloudfavorites Favorites-Web

Name of the Vulnerable Software and Affected Versions: cloudfavorites favorites-web versions up to 1.3.0 Description: A critical vulnerability exists in cloudfavorites favorites-web. The getCollectLogoUrl function within the app/src/main/java/com/favorites/web/CollectController.java file is...

6.5CVSS6.4AI score0.002EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2025/05/23 12:34 a.m.5 views

CVE-2022-4960

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.4CVSS6.2AI score0.0007EPSS
Exploits1References1
OSV
OSVadded 2024/01/12 3:15 a.m.11 views

CVE-2022-4960

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.4CVSS6.2AI score
Exploits0References3
NVD
NVDadded 2024/01/12 3:15 a.m.8 views

CVE-2022-4960

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.4CVSS4.2AI score0.0007EPSS
Exploits1References3
Prion
Prionadded 2024/01/12 3:15 a.m.11 views

Cross site scripting

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...

4.9CVSS6.6AI score0.0007EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2024/01/12 2:31 a.m.10 views

CVE-2022-4960 cloudfavorites favorites-web Nickname cross site scripting

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...

4CVSS5.4AI score0.0007EPSS
Exploits1References3
CVE
CVEadded 2024/01/12 2:31 a.m.36 views

CVE-2022-4960

In cloudfavorites Favorites-Web 1.3.0, the Nickname Handler component is reported to be vulnerable to cross-site scripting. The issue is described as a remote, potentially exploitable vulnerability affecting unknown functionality of Nickname Handler, with public disclosure of the exploit. Multipl...

5.4CVSS5.2AI score0.0007EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/12 2:31 a.m.5 views

CVE-2022-4960 cloudfavorites favorites-web Nickname cross site scripting

A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...

4CVSS5.2AI score0.0007EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2024/01/12 12:0 a.m.2 views

PT-2024-11898 · Unknown · Cloudfavorites Favorites-Web

Name of the Vulnerable Software and Affected Versions: cloudfavorites favorites-web version 1.3.0 Description: A problematic issue has been found in the Nickname Handler component, leading to cross site scripting. The attack can be launched remotely. The issue affects some unknown functionality o...

5.4CVSS6.2AI score0.0007EPSS
Exploits1References6
Rows per page
Query Builder