Lucene search
K

67 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-37677

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00456EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:3 a.m.6 views

CVE-2023-33518

emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request...

5.3CVSS6.8AI score0.00456EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:27 p.m.6 views

CVE-2021-26716

Modules/input/Views/schedule.php in Emoncms through 10.2.7 allows XSS via the node parameter...

6.1CVSS5.8AI score0.00791EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:15 a.m.9 views

CVE-2019-1010008

OpenEnergyMonitor Project Emoncms 9.8.8 is affected by: Cross Site Scripting XSS. The impact is: Theoretically low, but might potentially enable persistent XSS user could embed mal. code. The component is: Javascript code execution in "Name", "Location", "Bio" and "Starting Page" fields in the "M...

5.4CVSS6.2AI score0.00897EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/08 6:52 a.m.8 views

CVE-2025-22992

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project = 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions...

9.8CVSS8.6AI score0.00492EPSS
Exploits1References1
NVD
NVD
added 2025/02/06 7:15 p.m.15 views

CVE-2025-22992

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project = 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions...

9.8CVSS0.00492EPSS
Exploits1References1
OSV
OSV
added 2025/02/06 7:15 p.m.6 views

CVE-2025-22992

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project = 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions...

9.8CVSS8.9AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/06 12:0 a.m.4 views

PT-2025-5852 · Emoncms · Emoncms

Name of the Vulnerable Software and Affected Versions: Emoncms versions 11.6.9 and later Description: A SQL Injection vulnerability exists due to improper handling of user-supplied input in the data query parameter. This allows attackers to execute arbitrary SQL commands under specific conditions...

9.8CVSS8.1AI score0.00492EPSS
Exploits1References8
CVE
CVE
added 2025/02/06 12:0 a.m.83 views

CVE-2025-22992

CVE-2025-22992 affects Emoncms (version 11.6.9 and later) via SQL Injection in the /feed/insert.json endpoint. The vulnerability stems from improper handling of user-supplied input in the data query parameter, enabling attackers to execute arbitrary SQL commands under specific conditions. Reporte...

9.8CVSS8.9AI score0.00492EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/06 12:0 a.m.8 views

CVE-2025-22992

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project = 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions...

10AI score0.00492EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/02/06 12:0 a.m.9 views

Emoncms 安全漏洞

Emoncms is an open source web application from Emoncms Open Source. The program is primarily used to process, record and display energy, temperature and other environmental data. A security vulnerability exists in Emoncms version 11.6.9 and earlier, which stems from improper handling of...

9.8CVSS7.7AI score0.00492EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/06 12:0 a.m.11 views

CVE-2025-22992

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project = 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions...

0.00492EPSS
Exploits1References1
OSV
OSV
added 2023/06/05 3:15 p.m.4 views

CVE-2023-33518

emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request...

5.3CVSS6.1AI score0.00456EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/06/05 3:15 p.m.4 views

CVE-2023-33518

emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request...

5.3CVSS6.1AI score0.00456EPSS
Exploits1References2
Prion
Prion
added 2023/06/05 3:15 p.m.13 views

Information disclosure

emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request...

5CVSS5.1AI score0.00456EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/06/05 12:0 a.m.5 views

Emoncms 安全漏洞

Emoncms is an open source web application. The program is primarily used to process, record and display energy, temperature and other environmental data. A security vulnerability exists in Emoncms v11 and earlier versions, which stems from the presence of an information disclosure vulnerability...

5.3CVSS5.7AI score0.00456EPSS
Exploits1References2
CVE
CVE
added 2023/06/05 12:0 a.m.59 views

CVE-2023-33518

CVE-2023-33518 affects emoncms versions 11 and later, with an information disclosure flaw that lets an attacker obtain the server’s web directory path and other leaked information via a crafted web request. The root cause is described as an information disclosure issue in emoncms v11+. Multiple s...

5.3CVSS5.1AI score0.00456EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/05 12:0 a.m.9 views

CVE-2023-33518

emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request...

5.1AI score0.00456EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/06/05 12:0 a.m.7 views

PT-2023-24374 · Emoncms · Emoncms

Name of the Vulnerable Software and Affected Versions: emoncms versions 11 and later Description: The issue allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request. This is an information disclosure vulnerability. Recommendations: For...

5.3CVSS6.6AI score0.00456EPSS
Exploits1References4
Huntr
Huntr
added 2021/12/06 2:25 p.m.12 views

Cross-site Scripting (XSS) - DOM in emoncms/emoncms

Description EmonCMS 10.9.19 has a DOM-XSS vulnerability that is executed when javascript code is injected as imported data. Proof of Concept 1 - login into the app and browse to the section Feeds Import Data 2 - add alert1,a or 1638807909,alert2 in the CSV area. Then click on one of the empty fie...

1.8AI score
Exploits0
Rows per page
Query Builder