Lucene search
K

7 matches found

CVE
CVE
added 2026/06/09 7:35 a.m.27 views

CVE-2026-34033

CVE-2026-34033 affects Apache Answer up to version 2.0.0. The issue is an HTML content injection (basic XSS) where user-supplied content included in notification emails was not properly escaped, allowing authenticated users to inject arbitrary HTML into emails sent to other users. The CVSS vector...

5.4CVSS5.5AI score0.00372EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-1750

Malware in sbrugna...

5CVSS6.4AI score0.01351EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48392

Malicious code in bioql PyPI...

6.5CVSS5.5AI score0.00418EPSS
Exploits1References2
CVE
CVE
added 2025/08/20 9:14 a.m.23 views

CVE-2025-57733

JetBrains TeamCity prior to 2025.07.1 is vulnerable to a sMTP injection that can modify email content. The CVE-2025-57733 entry is corroborated by multiple connected sources, including Red Hat advisory and PT Security, which list TeamCity

5.5CVSS7.5AI score0.00261EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:50 a.m.12 views

CVE-2024-7472

lunary-ai/lunary v1.2.26 contains an email injection vulnerability in the Send email verification API /v1/users/send-verification and Sign up API /auth/signup. An unauthenticated attacker can inject data into outgoing emails by bypassing the extractFirstName function using a different whitespace...

6.5CVSS6.5AI score0.00418EPSS
Exploits1References1
CNVD
CNVD
added 2024/11/08 12:0 a.m.8 views

Lunary Email Injection Vulnerability

lunary is lunary open source a production toolkit for LLM . An email injection vulnerability exists in lunary, which allows an unauthenticated attacker to inject data into an outgoing email by bypassing the function using different space characters. No detailed vulnerability details are provided ...

6.5CVSS7.1AI score0.00418EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/29 12:49 p.m.38 views

CVE-2024-7472 Email Injection Vulnerability in lunary-ai/lunary

lunary-ai/lunary v1.2.26 contains an email injection vulnerability in the Send email verification API /v1/users/send-verification and Sign up API /auth/signup. An unauthenticated attacker can inject data into outgoing emails by bypassing the extractFirstName function using a different whitespace...

5.3CVSS0.00418EPSS
Exploits1References2
Rows per page
Query Builder