Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29919

Malicious code in bioql PyPI...

9.1CVSS9AI score0.00624EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:38 a.m.9 views

CVE-2023-26033

Gentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects in user preferences the "Recently Visited Packages" view for the index page, the value of the searchhistory cookie is used as a...

9.1CVSS7.3AI score0.00624EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2023/06/28 7:24 a.m.5 views

Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution

Multiple SQL injection vulnerabilities have been disclosed in Gentoo Soko that could lead to remote code execution RCE on vulnerable systems. "These SQL injections happened despite the use of an Object-Relational Mapping ORM library and prepared statements," SonarSource researcher Thomas...

9.8CVSS8.4AI score0.0115EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/06/28 7:24 a.m.58 views

Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution

Multiple SQL injection vulnerabilities have been disclosed in Gentoo Soko that could lead to remote code execution RCE on vulnerable systems. "These SQL injections happened despite the use of an Object-Relational Mapping ORM library and prepared statements," SonarSource researcher Thomas...

9.8CVSS8.3AI score0.0115EPSS
Exploits0
CNNVD
CNNVD
added 2023/03/20 12:0 a.m.6 views

Gentoo SQL注入漏洞

Gentoo is an open source Linux system from the Gentoo Foundation. A SQL injection vulnerability exists in Gentoo Soko versions prior to 1.0.2, which stems from a SQL injection vulnerability found in pkg/app/handler/packages/search.go...

9.8CVSS8.8AI score0.0115EPSS
Exploits0References3
NVD
NVD
added 2023/02/25 12:15 a.m.29 views

CVE-2023-26033

Gentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects in user preferences the "Recently Visited Packages" view for the index page, the value of the searchhistory cookie is used as a...

9.1CVSS7.9AI score0.00624EPSS
Exploits0References2
Prion
Prion
added 2023/02/25 12:15 a.m.20 views

Sql injection

Gentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects in user preferences the "Recently Visited Packages" view for the index page, the value of the searchhistory cookie is used as a...

6.4CVSS9.1AI score0.00624EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/02/25 12:0 a.m.6 views

Gentoo SQL注入漏洞

Gentoo is an open source Linux system from the Gentoo Foundation. A security vulnerability exists in Gentoo soko versions prior to 1.0.1, which stems from the presence of a SQL injection vulnerability that can be exploited by an attacker to cause a denial of service...

9.1CVSS8.4AI score0.00624EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/02/24 11:29 p.m.11 views

CVE-2023-26033 Gentoo soko contains DoS attack based on SQL Injection

Gentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects in user preferences the "Recently Visited Packages" view for the index page, the value of the searchhistory cookie is used as a...

7.5CVSS8.1AI score0.00624EPSS
Exploits0References2
OSV
OSV
added 2023/02/24 11:29 p.m.64 views

CVE-2023-26033 Gentoo soko contains DoS attack based on SQL Injection

Gentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects in user preferences the "Recently Visited Packages" view for the index page, the value of the searchhistory cookie is used as a...

7.5CVSS9.3AI score0.00624EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/02/24 11:29 p.m.27 views

CVE-2023-26033 Gentoo soko contains DoS attack based on SQL Injection

Gentoo soko is the code that powers packages.gentoo.org. Versions prior to 1.0.1 are vulnerable to SQL Injection, leading to a Denial of Service. If the user selects in user preferences the "Recently Visited Packages" view for the index page, the value of the searchhistory cookie is used as a...

7.5CVSS9.4AI score0.00624EPSS
Exploits0References2
Rows per page
Query Builder