Lucene search
K

441 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-14294

Malicious code in bioql PyPI...

2.7CVSS6.6AI score0.00215EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-34241

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.006EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.27 views

EUVD-2025-29775

Malicious code in bioql PyPI...

5.1CVSS6.3AI score0.00106EPSS
Exploits0References4
OSV
OSV
added 2025/10/02 10:15 a.m.6 views

CVE-2025-40646

Stored Cross-Site Scripting XSS vulnerability in Energy CRM v2025 by Status Tracker Ltd, consisting of a stored XSS due to lack of proper validation of user input by sending a POST request to “/crm/createjobsubmit.php”, using the “JobCreatedBy” parameter. This vulnerability could allow a remote...

5.4CVSS5.9AI score0.00193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/23 5:30 p.m.2 views

CVE-2025-0672 Authentication Bypass in Multiple WSO2 Products via Stale FIDO Credential Association

An authentication bypass vulnerability exists in multiple WSO2 products when FIDO authentication is enabled. When a user account is deleted, the system does not automatically remove associated FIDO registration data. If a new user account is later created using the same username, the system may...

3.3CVSS6.4AI score0.00202EPSS
Exploits0References1
Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.2 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.2 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.2 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/09/16 2:54 p.m.3 views

CVE-2025-4953

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS7.1AI score0.00596EPSS
Exploits0References17
Cvelist
Cvelist
added 2025/09/16 2:54 p.m.12 views

CVE-2025-4953 Podman: build context bind mount

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS0.00596EPSS
Exploits0References16
Circl
Circl
added 2025/09/12 3:2 p.m.14 views

CVE-2025-27238

creationtimestamp| type| source ---|---|--- 2025-09-12 15:02:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lynjtf252q2a...

3.5CVSS4.8AI score0.00169EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-31907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via the component scannerliteraliscreated at /jerry-core/parser/js/js-scanner-util.c...

7.8CVSS7AI score0.00328EPSS
Exploits1References2
CVE
CVE
added 2025/09/04 3:32 p.m.33 views

CVE-2025-38706

In CVE-2025-38706, the Linux kernel ASoC core vulnerability arises when snd_soc_remove_pcm_runtime() is called with rtd == NULL, leading to a NULL pointer dereference. The issue was reproduced during topology loading and marking a link as ignore due to a missing hardware component; on module remo...

5.5CVSS5.8AI score0.00179EPSS
Exploits0References11Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/25 5:32 a.m.3 views

CVE-2025-7642

The Simpler Checkout plugin for WordPress is vulnerable to Authentication Bypass in versions 0.7.0 to 1.1.9. This is due to the plugin not properly verifying a user's identity prior to logging them in as an admin through the simplerwcwoocommerceordercreated function. This makes it possible for...

9.8CVSS7AI score0.00463EPSS
Exploits0References1
Rows per page
Query Builder