9 matches found
EUVD-2025-9488
Malicious code in bioql PyPI...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
CVE-2025-29036
CVE-2025-29036 affects hackathon-starter v8.1.0. The vulnerability is a privilege escalation via the bundled user.js component, enabling a remote attacker to elevate privileges (per the CVE description). The CVE notes a local attack vector with low to moderate overall severity (CVSS 3.1: AV L, AC...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
PT-2025-14381 · Unknown · Hackathon-Starter
Name of the Vulnerable Software and Affected Versions: hackathon-starter version 8.1.0 Description: The issue allows a remote attacker to escalate privileges via the user.js component. This enables the attacker to gain higher access levels, potentially leading to further exploitation of the syste...
Hackathon Starter 安全漏洞
Hackathon Starter is a sample Node.js web application by the individual developer Sahat Yalkabov. A security vulnerability exists in Hackathon Starter version 8.1.0, which stems from a user.js component that could lead to elevation of privilege...