Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-8161

Malware in sbrugna...

5.9CVSS5.9AI score0.00705EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5379

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.01976EPSS
Exploits5References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-8700

Malicious code in bioql PyPI...

8CVSS6.8AI score0.00461EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4439

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01018EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-44640

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00646EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/06/06 8:12 p.m.17 views

CVE-2025-46341

FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, when the server is using HTTP auth via reverse proxy, it's possible to impersonate any user either via the Remote-User header or the X-WebAuth-User header by making specially crafted requests via the add feed functionality an...

7.1CVSS7.7AI score0.00392EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:32 p.m.7 views

CVE-2021-32776

Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.4, CSRF tokens can be reused by a malicious user, as on Windows servers no cleanup is done on CSRF tokens. This issue is fixed in versions 2.7.4 and 3.0.0...

8.8CVSS6.6AI score0.00377EPSS
Exploits0References1
Hacker One
Hacker One
added 2024/05/21 2:27 a.m.10 views

Mozilla: csrftoken not unique to session or specific user and csrfmiddlewaretoken can be altered

The CSRF token used in the application was not unique to the session or specific user, allowing an attacker to use a valid CSRF token obtained from another user to perform unauthorized actions on behalf of that user...

7AI score
Exploits0
NVD
NVD
added 2022/04/05 3:15 p.m.15 views

CVE-2021-41245

Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.6 and 3.0.0, CSRF tokens generated by privUITransactionFile aren't properly checked. Versions 2.7.6 and 3.0.0 contain a patch for this issue. As a workaround, use the session implementation by adding in the iTop conf...

8.1CVSS0.00694EPSS
Exploits1References3
Prion
Prion
added 2021/08/11 9:15 p.m.11 views

Cross site request forgery (csrf)

In SapphireIMS 5.0, there is no CSRF token present in the entire application. This can lead to CSRF vulnerabilities in critical application forms like account resent...

4.3CVSS6.6AI score0.00502EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder