Lucene search
K

86 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-1425

Malware in sbrugna...

7.5CVSS6.4AI score0.01949EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1111

Malware in sbrugna...

10CVSS6.4AI score0.01984EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-1127

Malware in sbrugna...

10CVSS6.4AI score0.01933EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-4926

Malware in sbrugna...

5CVSS6.4AI score0.01241EPSS
Exploits0References2
OSV
OSV
added 2024/10/19 7:8 a.m.12 views

BIT-DJANGO-2024-45231

An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome only...

5.3CVSS5.5AI score0.00805EPSS
Exploits0References4
CVE
CVE
added 2024/10/12 12:0 a.m.62 views

CVE-2024-49193

Zendesk pre-2024-07-02 is affected. The issue arises from processing incoming emails where Cc fields are extracted to grant extra ticket-viewing privileges, combined with an insufficient spoof-detection mechanism and predictable per-ticket support emails. This allows remote attackers to read tick...

7.5CVSS7AI score0.0068EPSS
Exploits0References3
NVD
NVD
added 2024/10/08 4:15 p.m.15 views

CVE-2024-45231

An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome only...

5.3CVSS0.00805EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/08 12:0 a.m.15 views

CVE-2024-45231

An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome only...

7.4AI score0.00805EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/08 12:0 a.m.20 views

CVE-2024-45231

An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome only...

0.00805EPSS
Exploits0References3
CVE
CVE
added 2024/10/08 12:0 a.m.91 views

CVE-2024-45231

Django CVE-2024-45231: Affects Django v5.1.1, v5.0.9, and v4.2.16. PasswordResetForm could reveal user email addresses during password-reset attempts when email sending fails, allowing remote enumeration through response outcomes. Public details in Debian/IBM advisories confirm exploitation requi...

5.3CVSS7.2AI score0.00805EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/10/08 12:0 a.m.16 views

CVE-2024-45231

An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome only...

5.3CVSS6.1AI score0.00805EPSS
Exploits0
Mageia
Mageia
added 2024/09/27 1:30 a.m.53 views

Updated python3 packages fix security vulnerabilities

A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “certstorestats” and “getcacerts”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as durin...

8.7CVSS7.1AI score0.02527EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.32 views

EulerOS 2.0 SP8 : python3 (EulerOS-SA-2024-2485)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in Python before 3.8.18, 3.9.x before 3.9.18, 3.10.x before 3.10.13, and 3.11.x before 3.11.5. It primarily affects serve...

6.5CVSS7.3AI score0.02527EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2024/03/06 12:0 a.m.15 views

SUSE SLES15: libpython2_7-1_0 / python / python-base / python-curses / etc (SUSE-SU-2024:0329-2)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2024:0329-2 advisory. - CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character bsc1210638. Tenable has extracted the preceding descripti...

5.3CVSS6.7AI score0.02527EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/02/25 12:0 a.m.28 views

Fedora 38 : mingw-python3 (2024-94e0390e4e)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-94e0390e4e advisory. Update to python3.11.8, backport fix for CVE-2023-27043. Tenable has extracted the preceding description block directly from the Fedora security advisory. No...

5.3CVSS7AI score0.02527EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/02/23 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2024:0595-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7.6AI score0.02527EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/02/22 12:0 a.m.15 views

SUSE SLED15: libpython3_6m1_0 / libpython3_6m1_0-32bit / python3 / python3-base / etc (SUSE-SU-2024:0581-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0581-1 advisory. - CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character bsc1210638...

5.3CVSS6.7AI score0.02527EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.18 views

Fedora 39 : python2.7 (2024-06ff0a6def)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-06ff0a6def advisory. Security fix for CVE-2023-27043 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

5.3CVSS7AI score0.02527EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.35 views

Amazon Linux 2023 : python3.11, python3.11-devel, python3.11-idle (ALAS2023-2023-252)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-252 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

5.5AI score
Exploits0References2
NVD
NVD
added 2023/05/11 12:15 p.m.16 views

CVE-2023-31445

Cassia Access controller before 2.1.1.2203171453, was discovered to have a unprivileged -information disclosure vulnerability that allows read-only users have the ability to enumerate all other users and discover e-mail addresses, phone numbers, and privileges of all other users...

5.3CVSS5.3AI score0.01155EPSS
Exploits1References3
Rows per page
Query Builder