26 matches found
EUVD-2025-6194
Malicious code in bioql PyPI...
EUVD-2025-6196
Malicious code in bioql PyPI...
GMOD Apollo Missing Authentication For Critical Function (CVE-2025-24924)
Binary data gmodapollocve-2025-24924.nbin...
GMOD Apollo Detection
Binary data gmodapollodetect.nbin...
CVE-2025-20002
After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with local path information disclosure...
CVE-2025-23410
When uploading organism or sequence data via the web interface, GMOD Apollo will unzip and inspect the files and will not check for path traversal in supported archive types...
CVE-2025-24924
Certain functionality within GMOD Apollo does not require authentication when passed with an administrative username...
CVE-2025-21092
GMOD Apollo does not have sufficient logical or access checks when updating a user's information. This could result in an attacker being able to escalate privileges for themselves or others...
CVE-2025-23410
When uploading organism or sequence data via the web interface, GMOD Apollo will unzip and inspect the files and will not check for path traversal in supported archive types...
CVE-2025-24924
Certain functionality within GMOD Apollo does not require authentication when passed with an administrative username...
CVE-2025-21092
GMOD Apollo does not have sufficient logical or access checks when updating a user's information. This could result in an attacker being able to escalate privileges for themselves or others...
CVE-2025-20002
After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with local path information disclosure...
CVE-2025-20002 GMOD Apollo Generation of Error Message Containing Sensitive Information
After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with local path information disclosure...
CVE-2025-20002 GMOD Apollo Generation of Error Message Containing Sensitive Information
After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with local path information disclosure...
CVE-2025-20002
After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with local path information disclosure...
CVE-2025-20002
CVE-2025-20002 affects GMOD Apollo. Root cause is insufficient input validation during file uploads and archive handling, enabling local path information disclosure after uploading files that do not meet prerequisites. Documentation notes path traversal risk when updating user data and during arc...
CVE-2025-24924 GMOD Apollo Missing Authentication for Critical Function
Certain functionality within GMOD Apollo does not require authentication when passed with an administrative username...
CVE-2025-24924 GMOD Apollo Missing Authentication for Critical Function
Certain functionality within GMOD Apollo does not require authentication when passed with an administrative username...
CVE-2025-24924
CVE-2025-24924 concerns GMOD Apollo missing authentication for a critical function. Connected sources describe that GMOD Apollo lacks sufficient authentication when an administrative username is used, enabling privilege escalation. The ICS/NVD references add concrete technical details: (1) the sy...
CVE-2025-24924
Certain functionality within GMOD Apollo does not require authentication when passed with an administrative username...