Lucene search
+L

181 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @zalastax/nolb-cup (npm)

The package @zalastax/nolb-cup was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-11057 Malicious code in @zalastax/nolb-cup (npm)

The package @zalastax/nolb-cup was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-9902 Malicious code in @zalastax/nolb-_cup (npm)

The package @zalastax/nolb-cup was found to contain malicious code...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/25 12:0 a.m.8 views

Performance of Machine Learning Classifiers for Anomaly Detection in Cyber Security Applications

This work empirically evaluates machine learning models on two imbalanced public datasets KDDCUP99 and Credit Card Fraud 2013. The method includes data preparation, model training, and evaluation, using an 80/20 train/test split. Models tested include eXtreme Gradient Boosting XGB, Multi Layer...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/07 9:48 a.m.9 views

CVE-2025-22794

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.9...

7.1CVSS7.3AI score0.00246EPSS
Exploits0References1
NVD
NVD
added 2025/02/04 3:15 p.m.21 views

CVE-2025-22794

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.8...

7.1CVSS0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/04 2:21 p.m.14 views

CVE-2025-22794 WordPress World Cup Predictor Plugin <= 1.9.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Landoweb Programador World Cup Predictor allows Reflected XSS. This issue affects World Cup Predictor: from n/a through 1.9.6...

7.1CVSS7.2AI score0.00246EPSS
Exploits0References1
CVE
CVE
added 2025/02/04 2:21 p.m.51 views

CVE-2025-22794

CVE-2025-22794 affects WordPress World Cup Predictor plugin by Landoweb. The disclosed data indicate a Reflected Cross‑Site Scripting (XSS) vulnerability caused by improper neutralization of input during web page generation, impacting World Cup Predictor versions up to 1.9.6 (and possibly earlier...

7.1CVSS8.6AI score0.00246EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/04 2:21 p.m.19 views

CVE-2025-22794 WordPress World Cup Predictor Plugin <= 1.9.8 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.8...

7.1CVSS0.00246EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/04 12:0 a.m.5 views

WordPress plugin World Cup Predictor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.6AI score0.00246EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/04 12:0 a.m.5 views

PT-2025-4704 · Unknown · Landoweb Programador World Cup Predictor

Name of the Vulnerable Software and Affected Versions: Landoweb Programador World Cup Predictor versions 1.9.6 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Reflected Cross-site Scripting XSS. This means that an...

7.1CVSS8.8AI score0.00246EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/01/13 5:46 p.m.6 views

WordPress World Cup Predictor Plugin <= 1.9.8 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin World Cup Predictor versions = 1.9.8...

7.1CVSS6.1AI score0.00246EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.7 views

The vulnerability of the Imagine Cup platform’s code execution mechanism for Microsoft Azure Functions allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Imagine Cup platform’s Microsoft Azure Functions component is related to lack of access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

7.8CVSS5.8AI score0.00961EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2024/10/17 5:18 a.m.45 views

Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk

A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances. The vulnerability, tracked as CVE-2024-9486 CVSS score: 9.8, has been addressed in version 0.1.38. The project maintainers...

9.8CVSS7.8AI score0.90709EPSS
Exploits1
CNVD
CNVD
added 2024/10/17 12:0 a.m.20 views

Microsoft Imagine Cup site information disclosure vulnerability

Microsoft Imagine Cup is a developer tool from Microsoft Corporation USA. The Microsoft Imagine Cup site suffers from an information disclosure vulnerability that stems from incorrect access control. An attacker could exploit the vulnerability to elevate privileges over a network...

7.5CVSS6.1AI score0.00961EPSS
Exploits0References1
NVD
NVD
added 2024/10/15 11:15 p.m.37 views

CVE-2024-38204

Improper access control in Imagine Cup allows an authorized attacker to elevate privileges over a network...

7.5CVSS0.00961EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/15 10:46 p.m.19 views

CVE-2024-38204 Imagine Cup site Information Disclosure Vulnerability

...

7.5CVSS7.2AI score0.00961EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/15 10:46 p.m.34 views

CVE-2024-38204 Imagine Cup site Information Disclosure Vulnerability

...

7.5CVSS0.00961EPSS
Exploits0References1
CVE
CVE
added 2024/10/15 10:46 p.m.81 views

CVE-2024-38204

CVE-2024-38204 is an improper access control vulnerability affecting Microsoft Imagine Cup (site). Connected sources confirm an authorized attacker could elevate privileges over a network due to insufficient access control. Microsoft’s MSRC entry and other feeds link this CVE to Microsoft Azure F...

7.5CVSS7AI score0.00961EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2024/10/15 7:0 a.m.28 views

Imagine Cup site Information Disclosure Vulnerability

Improper access control in Imagine Cup allows an authorized attacker to elevate privileges over a network...

7.5CVSS7.7AI score0.00961EPSS
Exploits0
Rows per page
Query Builder