Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-3782

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.17749EPSS
Exploits1References5
OSV
OSV
added 2022/05/22 12:0 a.m.9 views

GHSA-FH55-VWJC-69C7 Unescaped control characters in Gitblit

Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "admin"' value...

9.8CVSS9.7AI score0.17749EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/05/22 12:0 a.m.26 views

Unescaped control characters in Gitblit

Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "admin"' value...

9.8CVSS9AI score0.17749EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2022/05/21 9:15 p.m.12 views

CVE-2022-31267

Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "admin"' value...

9.8CVSS0.17749EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/05/21 9:15 p.m.5 views

CVE-2022-31267

Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "admin"' value...

9.8CVSS7.3AI score0.17749EPSS
Exploits1References3
CVE
CVE
added 2022/05/21 8:35 p.m.71 views

CVE-2022-31267

CVE-2022-31267 affects Gitblit 1.9.2. The issue is privilege escalation via the Config User Service: a control character (for example, in an emailAddress field with a newline/tab) can be interpreted to set role = "#admin". NVD cites CVSSv2/3.1 base scores of 7.5 (HIGH) and 9.8 (CRITICAL). Rationa...

9.8CVSS9.6AI score0.17749EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/06/24 11:15 p.m.1 views

CVE-2020-15046

The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/configuser.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88...

9.3CVSS8.2AI score0.02296EPSS
Exploits6References3
exploitpack
exploitpack
added 2007/01/20 12:0 a.m.15 views

Bradabra 2.0.5 - includeincludes.php Remote File Inclusion

Bradabra 2.0.5 - includeincludes.php Remote File Inclusion ====================================================================== Bradabra == v2.0.5 Remote File Include Vulnerability ====================================================================== Downlaoad Script...

0.4AI score
Exploits0
Rows per page
Query Builder