Lucene search
K

203 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-4788

Malware in sbrugna...

5CVSS6.4AI score0.01116EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-6852

Malware in sbrugna...

4.7CVSS4.9AI score0.00296EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-14585

Malware in sbrugna...

8.8CVSS8.8AI score0.01937EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2003-0487

Malware in sbrugna...

10CVSS6.4AI score0.01779EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-0591

Malware in sbrugna...

7.2CVSS6.4AI score0.00297EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-4780

Malware in sbrugna...

9.8CVSS9.5AI score0.01191EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-1482

Malware in sbrugna...

6.8CVSS6.3AI score0.01784EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-41732

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00339EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-49489

Malicious code in bioql PyPI...

7.4CVSS6.6AI score0.00634EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-13446

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0038EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47722

Malicious code in bioql PyPI...

9.8CVSS8.7AI score0.14886EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-27024

Malicious code in bioql PyPI...

3.1CVSS4.1AI score0.00256EPSS
Exploits0References4
NVD
NVD
added 2025/09/05 6:15 p.m.63 views

CVE-2025-10014

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/updateEmail/ of the component Email Address Handler. Executing manipulation of the argument id/email can lead to improper authorization. The attack may be performed from remote...

3.1CVSS0.00256EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/05 5:32 p.m.41 views

CVE-2025-10014 elunez eladmin Email Address updateEmail updateUserEmail improper authorization

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/updateEmail/ of the component Email Address Handler. Executing manipulation of the argument id/email can lead to improper authorization. The attack may be performed from remote...

3.1CVSS0.00256EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/05 5:32 p.m.4 views

CVE-2025-10014 elunez eladmin Email Address updateEmail updateUserEmail improper authorization

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/updateEmail/ of the component Email Address Handler. Executing manipulation of the argument id/email can lead to improper authorization. The attack may be performed from remote...

3.1CVSS4AI score0.00256EPSS
Exploits0References4
CVE
CVE
added 2025/09/05 5:32 p.m.21 views

CVE-2025-10014

CVE-2025-10014 affects elunez eladmin up to 2.7, specifically the updateUserEmail function in the Email Address Handler at /api/users/updateEmail/. Manipulating the id/email argument can cause improper authorization, potentially allowing a remote attacker to access or modify user data. Exploitati...

3.1CVSS4AI score0.00256EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.4 views

PT-2025-36258

Name of the Vulnerable Software and Affected Versions: elunez eladmin versions up to 2.7 Description: A flaw exists in elunez eladmin that impacts the updateUserEmail function within the Email Address Handler component. Manipulation of the id/email argument in the /api/users/updateEmail/ API...

3.1CVSS3.7AI score0.00256EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/09 12:0 a.m.5 views

ConnectWise PSA 安全漏洞

ConnectWise PSA is a specialized service automation software from ConnectWise USA. A security vulnerability exists in ConnectWise PSA versions prior to 2025.9 that stems from the API returning too much user information, which could lead to an authenticated user obtaining an encrypted password has...

6.5CVSS6.6AI score0.00295EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/01 12:0 a.m.34 views

CVE-2025-52101

linjiashop =0.9 is vulnerable to Incorrect Access Control. When using the default-generated JWT authentication, attackers can bypass the authentication and retrieve the encrypted "password" and "salt". The password can then be obtained through brute-force cracking...

0.00421EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:13 a.m.8 views

CVE-2023-40354

An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password on a "maxctrl create service" command line, but this password is then stored in cleartext in the resulting .cnf file under /var/lib/maxscale/maxscale.cnf.d. The fixed versions are 2.5.28, 6.4.9, 22.08....

6.5CVSS7AI score0.00268EPSS
Exploits0
Rows per page
Query Builder