9 matches found
EUVD-2025-9488
Malicious code in bioql PyPI...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
PT-2025-14381 · Unknown · Hackathon-Starter
Name of the Vulnerable Software and Affected Versions: hackathon-starter version 8.1.0 Description: The issue allows a remote attacker to escalate privileges via the user.js component. This enables the attacker to gain higher access levels, potentially leading to further exploitation of the syste...
CVE-2025-29036
CVE-2025-29036 affects hackathon-starter v8.1.0. The vulnerability is a privilege escalation via the bundled user.js component, enabling a remote attacker to elevate privileges (per the CVE description). The CVE notes a local attack vector with low to moderate overall severity (CVSS 3.1: AV L, AC...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...
Hackathon Starter 安全漏洞
Hackathon Starter is a sample Node.js web application by the individual developer Sahat Yalkabov. A security vulnerability exists in Hackathon Starter version 8.1.0, which stems from a user.js component that could lead to elevation of privilege...
CVE-2025-29036
An issue in hackathon-starter v.8.1.0 allows a remote attacker to escalate privileges via the user.js component...