Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

75 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:12 a.m.4 views

CVE-2022-0515

Cross-Site Request Forgery CSRF in GitHub repository crater-invoice/crater prior to 6.0.4...

4.3CVSS7AI score0.00117EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:41 a.m.10 views

CVE-2022-0242

Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0...

7.2CVSS6.7AI score0.00493EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:41 a.m.6 views

CVE-2022-0372

Cross-site Scripting XSS - Stored in Packagist bytefury/crater prior to 6.0.2...

7.6CVSS5.8AI score0.00263EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-0489

Malicious code in bioql PyPI...

7.6CVSS6.5AI score0.00263EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-15643

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00117EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-15642

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00203EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-0743

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00277EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-24381

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00442EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-0491

Malicious code in bioql PyPI...

7.2CVSS7AI score0.00493EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-24382

Malicious code in bioql PyPI...

7.8CVSS7.2AI score0.00322EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 7:41 a.m.6 views

CVE-2024-55556

A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APPKEY to achieve remote command execution on the server by manipulating the laravelsession cookie, exploiting arbitrary deserialization through the encrypted session data. The exploitation vector of this...

9.8CVSS7.6AI score0.86575EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:27 p.m.3 views

CVE-2022-0514

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS6.8AI score0.00203EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/06 4:22 a.m.9 views

CVE-2021-4080

crater is vulnerable to Unrestricted Upload of File with Dangerous Type...

8.8CVSS6.6AI score0.00423EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/02/05 11:3 p.m.5 views

CVE-2022-1033

Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.6...

7.8CVSS6.7AI score0.00322EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/05 10:53 p.m.5 views

CVE-2022-1032

Insecure deserialization of not validated module file in GitHub repository crater-invoice/crater prior to 6.0.6...

7.2CVSS6.8AI score0.00442EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/05 7:29 p.m.5 views

CVE-2022-0203

Improper Access Control in GitHub repository crater-invoice/crater prior to 6.0.2...

7.5CVSS6.7AI score0.00277EPSS
Exploits1References1
NVD
NVDadded 2025/01/07 4:15 p.m.10 views

CVE-2024-55556

A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APPKEY to achieve remote command execution on the server by manipulating the laravelsession cookie, exploiting arbitrary deserialization through the encrypted session data. The exploitation vector of this...

9.8CVSS0.86575EPSS
Exploits2References3
OSV
OSVadded 2025/01/07 4:15 p.m.0 views

CVE-2024-55556

A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APPKEY to achieve remote command execution on the server by manipulating the laravelsession cookie, exploiting arbitrary deserialization through the encrypted session data. The exploitation vector of this...

9.8CVSS6AI score
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/01/07 12:0 a.m.9 views

CVE-2024-55556

A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APPKEY to achieve remote command execution on the server by manipulating the laravelsession cookie, exploiting arbitrary deserialization through the encrypted session data. The exploitation vector of this...

7.7AI score0.86575EPSS
Exploits2References3
CNNVD
CNNVDadded 2025/01/07 12:0 a.m.4 views

Crater 代码问题漏洞

Crater is an open source web and mobile application from Crater Invoice Open Source. It is used to track expenses, make payments and create professional invoices and estimates. Crater has a code issue vulnerability. An attacker exploiting this vulnerability could remotely execute commands...

9.8CVSS9.4AI score0.86575EPSS
Exploits2References4
Rows per page
Query Builder