Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.6 views

CVE-2020-10671

The Canon Oce Colorwave 500 4.0.0.0 printer's web application is missing any form of CSRF protections. This is a system-wide issue. An attacker could perform administrative actions by targeting a logged-in administrative user. NOTE: this is fixed in the latest version...

8.8CVSS6.9AI score0.00703EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3115

Malware in sbrugna...

8.8CVSS8.6AI score0.00703EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2020-23338

Malware in sbrugna...

4.8CVSS5.1AI score0.0033EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2015-6666

Malware in sbrugna...

7.5CVSS6.1AI score0.00862EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-16826

Malware in sbrugna...

8.8CVSS8.7AI score0.0245EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-5083

Malicious code in bioql PyPI...

8.8CVSS6.7AI score0.02899EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-52734

Malicious code in bioql PyPI...

8.1CVSS6.5AI score0.00301EPSS
Exploits1References1
Redos
Redos
added 2025/08/06 12:0 a.m.10 views

ROS-20250806-13

Golang programming language vulnerability is related to improper input validation. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code A vulnerability in the crypto-elliptic component of the Golang programming language is related to the...

9.1CVSS8.5AI score0.00856EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2025/03/11 9:49 p.m.5 views

CVE-2025-27792 Opal vulnerable to CSRF protection bypass

Opal is OBiBa’s core database application for biobanks or epidemiological studies. Prior to version 5.1.1, the protections against cross-site request forgery CSRF were insufficient application-wide. The referrer header is checked, and if it is invalid, the server returns 403. However, the referre...

8.7CVSS6.8AI score0.00268EPSS
Exploits0References1
CVE
CVE
added 2025/01/06 12:0 a.m.46 views

CVE-2024-55076

Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password. Affected product is the Grocy web application up to version 4.3.0. Root cause and impact are stated in the CVE description; the practical consequence is CSRF vulnerability enabling unauthorized p...

8.1CVSS7.1AI score0.00301EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/11/07 6:15 p.m.16 views

CVE-2020-11919

An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF protection...

8CVSS0.00332EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/12/12 12:0 a.m.8 views

PT-2022-24573 · WordPress · Disable Json Api

Name of the Vulnerable Software and Affected Versions: Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan WordPress plugin versions prior to 4.20 Description: The issue concerns a lack of proper authorization and CSRF protection in an AJAX action within the...

6.5CVSS6.4AI score0.0034EPSS
Exploits2References5
Rows per page
Query Builder