Lucene search
+L

77 matches found

CVE
CVE
added 2026/05/07 12:40 p.m.20 views

CVE-2026-5791

DivvyDrive CSRF (Cross-Site Request Forgery) vulnerability (CVE-2026-5791) affects DivvyDrive Software prior to 4.8.3.2 (versions starting 4.8.2.9). Root cause is CSRF; impact is information-agnostic, with high integrity impact per the entry. Remediation: upgrade to version 4.8.3.2 or later. Expl...

6.5CVSS5.8AI score0.0015EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.13 views

DivvyDrive 安全漏洞

DivvyDrive is a file storage and sharing management platform developed by DivvyDrive Inc. in Turkey. Versions of DivvyDrive from 4.8.2.9 to 4.8.3.2 contained security vulnerabilities. These vulnerabilities were caused by improper use of HTML tags related to scripts in web pages, which could lead ...

8.8CVSS5.6AI score0.00327EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.12 views

DivvyDrive 跨站请求伪造漏洞

DivvyDrive is a file storage and sharing management platform developed by DivvyDrive Inc. in Turkey. Versions of DivvyDrive from 4.8.2.9 to 4.8.3.2 contained a cross-site request forgeing vulnerability. This vulnerability was caused by cross-site request forgeing, and it could lead to cross-site...

6.5CVSS5.7AI score0.0015EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.10 views

DivvyDrive 安全漏洞

DivvyDrive is a file storage and sharing management platform developed by DivvyDrive Inc. in Turkey. Versions of DivvyDrive prior to 4.8.3.2 contained security vulnerabilities. These vulnerabilities stemmed from improper control over modifications to object properties and unlimited resource...

8.3CVSS5.8AI score0.00221EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.11 views

DivvyDrive 输入验证错误漏洞

DivvyDrive is a file storage and sharing management platform developed by DivvyDrive Inc. in Turkey. Versions of DivvyDrive from 4.8.2.9 to 4.8.3.2 contained a vulnerability related to input validation errors. This vulnerability resulted from URL redirection to untrusted sites, which could lead t...

9.6CVSS5.8AI score0.00233EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.15 views

PT-2026-38437

Name of the Vulnerable Software and Affected Versions DivvyDrive versions 4.8.2.9 through 4.8.3.1 Description DivvyDrive allows parameter injection, which leads to an open redirect. This occurs when the application redirects users to an untrusted site via a manipulated parameter. Recommendations...

9.6CVSS5.7AI score0.00233EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.17 views

PT-2026-38427

Improper neutralization of Script-Related HTML tags in a web page basic XSS vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Cross-Site Scripting XSS. This issue affects DivvyDrive: from 4.8.2.9 before 4.8.3.2...

8.8CVSS5.8AI score0.00327EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.12 views

DivvyDrive 跨站脚本漏洞

DivvyDrive is a file storage and sharing management platform developed by DivvyDrive Inc. in Turkey. Versions of DivvyDrive from 4.8.2.9 to 4.8.3.2 contained a cross-site scripting vulnerability. This vulnerability stemmed from improper input during web page generation, which could lead to...

8.8CVSS5.6AI score0.00327EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.13 views

PT-2026-38433

Improperly controlled modification of Dynamically-Determined object attributes, Allocation of resources without limits or throttling vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Excessive Allocation, Flooding. This issue affects DivvyDrive: from 4.8.2.19 before...

8.3CVSS5.8AI score0.00221EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.19 views

PT-2026-38426

Name of the Vulnerable Software and Affected Versions DivvyDrive versions 4.8.2.9 through 4.8.3.1 Description DivvyDrive contains a Cross-Site Request Forgery CSRF flaw, which is a type of attack that tricks a victim into submitting a malicious request. This allows an attacker to perform actions ...

6.5CVSS5.8AI score0.0015EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.17 views

PT-2026-38425

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Stored XSS. This issue affects DivvyDrive: from 4.8.2.9 before 4.8.3.2...

8.8CVSS5.8AI score0.00327EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/13 10:2 a.m.9 views

CVE-2025-11962

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS.This issue affects Digital Corporate Warehouse: before v.4.8.2.22...

7.3CVSS6AI score0.00246EPSS
Exploits0References1
CVE
CVE
added 2025/11/12 9:14 a.m.20 views

CVE-2025-11962

CVE-2025-11962 is a Stored XSS in DivvyDrive Information Technologies’ Digital Corporate Warehouse (pre-4.8.2.22). The issue arises from improper input neutralization during web page generation, enabling stored cross-site scripting. Affected software: Digital Corporate Warehouse versions before 4...

7.3CVSS5.8AI score0.00246EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/12 9:14 a.m.12 views

CVE-2025-11962 Stored XSS in DivvyDrive Information Technologies' Digital Corporate Warehouse

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS. This issue affects Digital Corporate Warehouse: before v.4.8.2.22...

7.3CVSS0.00246EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/12 9:14 a.m.3 views

CVE-2025-11962 Stored XSS in DivvyDrive Information Technologies' Digital Corporate Warehouse

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS. This issue affects Digital Corporate Warehouse: before v.4.8.2.22...

7.3CVSS5.8AI score0.00246EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/12 9:14 a.m.5 views

EUVD-2025-124978

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS.This issue affects Digital Corporate Warehouse: before v.4.8.2.22...

7.3CVSS5.5AI score0.00246EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.3 views

DivvyDrive Digital Corporate Warehouse 跨站脚本漏洞

DivvyDrive Digital Corporate Warehouse is a file management platform from the Turkish company DivvyDrive. A cross-site scripting vulnerability exists in versions prior to DivvyDrive Digital Corporate Warehouse v.4.8.2.22, which stems from improper input neutralization during web page generation a...

7.3CVSS5.7AI score0.00246EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.5 views

PT-2025-46581

Name of the Vulnerable Software and Affected Versions DivvyDrive Information Technologies Inc. Digital Corporate Warehouse versions prior to 4.8.2.22 Description The software contains an Improper Neutralization of Input During Web Page Generation issue, specifically a Stored Cross-site Scripting...

7.3CVSS5.5AI score0.00246EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-15932

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00416EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-30952

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00218EPSS
Exploits0References2
Rows per page
Query Builder