Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-1551

Malware in sbrugna...

7.8CVSS7.5AI score0.00319EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-9943

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00855EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4433

Malicious code in bioql PyPI...

5.5CVSS5.6AI score0.00348EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/31 12:0 a.m.4 views

PT-2025-31581

Name of the Vulnerable Software and Affected Versions RSA Archer version 6.11.00204.10014 Description An issue was discovered that allows attackers to execute arbitrary code via crafted system inputs. These inputs are exported into a CSV file, and execution occurs after a user opens the file with...

8.8CVSS7.8AI score0.00436EPSS
Exploits0References9
CVE
CVE
added 2025/07/23 12:11 a.m.27 views

CVE-2025-54120

The CVE-2025-54120 vulnerability affects PCL (Plain Craft Launcher) Community Edition, specifically versions 2.12.0-beta.5 through 2.12.0-beta.9. During the third‑party login flow, credentials are inadvertently written to the local log file. While the log file isn’t automatically uploaded, leakag...

9.3CVSS6.8AI score0.00143EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:7 a.m.9 views

CVE-2019-1003066

Jenkins Bugzilla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS6.7AI score0.01365EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:8 a.m.8 views

CVE-2017-9030

The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...

7.5CVSS6.9AI score0.02101EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:35 p.m.8 views

CVE-2004-2718

PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request...

4.3CVSS6.4AI score0.01657EPSS
Exploits0References1
OSV
OSV
added 2012/08/07 8:55 p.m.7 views

CVE-2012-2652

The bdrvopen function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file...

6AI score
Exploits0References8
Rows per page
Query Builder