Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-17401

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00457EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 5:37 a.m.8 views

CVE-2024-1666

In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar creation. The vulnerability stems from the lack of server-side checks to verify if a user is on a free account during the radar creation process, which is only enforced in the web UI. As a result,...

7.5CVSS5.2AI score0.00457EPSS
Exploits1References1
OSV
OSV
added 2024/04/16 12:15 a.m.22 views

CVE-2024-1666

In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar creation. The vulnerability stems from the lack of server-side checks to verify if a user is on a free account during the radar creation process, which is only enforced in the web UI. As a result,...

5.3CVSS6.7AI score0.00457EPSS
Exploits1References2
CVE
CVE
added 2024/04/16 12:0 a.m.63 views

CVE-2024-1666

CVE-2024-1666 affects lunary-ai/lunary 1.0.0, where an authorization flaw allows unauthorized radar creation. The root cause is missing server-side checks to verify a user’s paid/upgraded status during radar creation (enforced only in the web UI). Attackers can bypass account upgrade requirements...

7.5CVSS7.5AI score0.00457EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/04/16 12:0 a.m.19 views

CVE-2024-1666 Unauthorized Radar Creation in lunary-ai/lunary

In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar creation. The vulnerability stems from the lack of server-side checks to verify if a user is on a free account during the radar creation process, which is only enforced in the web UI. As a result,...

7.5CVSS7.7AI score0.00457EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/04/16 12:0 a.m.20 views

CVE-2024-1666 Unauthorized Radar Creation in lunary-ai/lunary

In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar creation. The vulnerability stems from the lack of server-side checks to verify if a user is on a free account during the radar creation process, which is only enforced in the web UI. As a result,...

7.5CVSS6.7AI score0.00457EPSS
Exploits1References2
OSV
OSV
added 2024/04/10 5:15 p.m.15 views

CVE-2024-1599

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.6AI score
Exploits0
Prion
Prion
added 2018/05/02 7:29 a.m.11 views

Privilege escalation

Golden Frog VyprVPN 2.12.1.8015 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "VyprVPN" service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. The "SetProperty" method allows an attacker t...

7.2CVSS8AI score0.00351EPSS
Exploits0References1Affected Software1
myhack58
myhack58
added 2011/08/12 12:0 a.m.28 views

DedeCms v5. 6-5. 7 explosion serious security vulnerability free account and password directly into the background-bug warning-the black bar safety net

As is well known, due to the use of simple, customer base, and more, weaving dreams CMS has been broke many vulnerabilities. Today xiaobian in the group to get the woven dream official forum, a moderator and reliable message:“DEDECMS explosion serious security vulnerability, the recent official...

Exploits0
Rows per page
Query Builder