Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-52711

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00148EPSS
Exploits1References2
NVD
NVDadded 2022/06/02 2:15 p.m.7 views

CVE-2022-31004

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

7.5CVSS0.00148EPSS
Exploits1References2
Prion
Prionadded 2022/06/02 2:15 p.m.18 views

Code injection

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

5CVSS7.6AI score0.00148EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2022/05/30 12:0 a.m.1 views

cve-services 安全漏洞

cve-services is an open source project. It is used to operate the CVE Services API. A security vulnerability exists in cve-services that originates from the storage of randomKey in plain text in the data.js script. a remote attacker could gain unauthorized access to sensitive information on the...

7.5CVSS7.4AI score0.00148EPSS
Exploits1References4
Cvelist
Cvelistadded 2022/05/25 9:55 p.m.11 views

CVE-2022-31004 Potential secrets being logged to disk in CVE Services

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

7.5CVSS7.8AI score0.00148EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2022/05/25 9:55 p.m.3 views

CVE-2022-31004 Potential secrets being logged to disk in CVE Services

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

7.5CVSS7.8AI score0.00148EPSS
Exploits1References2
CVE
CVEadded 2022/05/25 9:55 p.m.585 views

CVE-2022-31004

CVE-2022-31004 affects the open source CVE services API project cve-services. A conditional in data.js can cause the generated randomKey to be written to disk when not running in development, potentially exposing plaintext secrets on disk in production. Public details do not list a released patch...

7.5CVSS7.6AI score0.00148EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2016/06/08 2:59 p.m.13 views

Code injection

web/admin/data.js in the Performance Center Virtual Table Server VTS component in HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and 12.50 through patch 3 and Performance Center 11.52 through patch 3, 12.00 through patch 1, 12.01 through...

6.4CVSS7.3AI score0.03748EPSS
Exploits0References5Affected Software2
Rows per page
Query Builder