Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-28090

Malware in sbrugna...

8.8CVSS8.6AI score0.01281EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-2378

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.03573EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4911

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01494EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 5:29 p.m.7 views

CVE-2020-6949

A privilege escalation issue was discovered in the postUser function in HashBrown CMS through 1.3.3. An editor user can change the password hash of an admin user's account, or otherwise reconfigure that account...

8.8CVSS7.3AI score0.01281EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:46 p.m.8 views

CVE-2020-6948

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

9.8CVSS7.8AI score0.03573EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:39 p.m.7 views

CVE-2020-5840

An issue was discovered in HashBrown CMS before 1.3.2. Server/Entity/Resource/Connection.js allows an attacker to reach a parent directory via a crafted name or ID field...

7.5CVSS6.7AI score0.01494EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/02 12:0 a.m.6 views

Fedora 39 : glycin-loaders / gnome-tour / helix / helvum / libipuz / librsvg2 / etc (2024-40ee18b2e7)

The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-40ee18b2e7 advisory. This update contains builds from a mini-mass-rebuild for Rust applications and some C-style libraries. Rebuilding with the Rust 1.78 toolchain should fix...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/28 12:0 a.m.11 views

Fedora 40 : glycin-loaders / gnome-tour / helix / helvum / libipuz / loupe / etc (2024-ce2936b568)

The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-ce2936b568 advisory. This update contains builds from a mini-mass-rebuild for Rust applications and some C-style libraries. Rebuilding with the Rust 1.78 toolchain should fix...

5.6AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/24 5:6 p.m.27 views

HashBrown CMS RCE

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

9.8CVSS7.9AI score0.03573EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/05/24 5:6 p.m.13 views

GHSA-4GJV-5JJP-RCGH HashBrown CMS RCE

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

9.8CVSS9.8AI score0.03573EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/24 5:5 p.m.24 views

HashBrown CMS Directory Traversal

An issue was discovered in HashBrown CMS before 1.3.2. Server/Entity/Resource/Connection.js allows an attacker to reach a parent directory via a crafted name or ID field...

7.5CVSS6.7AI score0.01494EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/24 5:5 p.m.17 views

GHSA-Q7HX-MRV5-6MRP HashBrown CMS Directory Traversal

An issue was discovered in HashBrown CMS before 1.3.2. Server/Entity/Resource/Connection.js allows an attacker to reach a parent directory via a crafted name or ID field...

7.5CVSS7.3AI score0.01494EPSS
Exploits0References5
CNVD
CNVD
added 2020/01/14 12:0 a.m.3 views

HashBrown CMS Remote Code Execution Vulnerability

HashBrown CMS is an open source headless content management system CMS. HashBrown CMS suffers from a remote code execution vulnerability that stems from the program not performing proper security checks. An attacker could exploit the vulnerability to execute code...

9.8CVSS8.2AI score0.03573EPSS
Exploits1References1
CNVD
CNVD
added 2020/01/14 12:0 a.m.4 views

HashBrown CMS 'postUser' function boost vulnerability

HashBrown CMS is an open source headless content management system CMS. A power lifting vulnerability exists in the 'postUser' function in HashBrown CMS version 1.3.3 and earlier. An attacker can exploit this vulnerability to change the hashed password of an administrator account or reset the...

8.8CVSS7AI score0.01281EPSS
Exploits1References1
NVD
NVD
added 2020/01/13 7:15 p.m.28 views

CVE-2020-6948

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

9.8CVSS9.8AI score0.03573EPSS
Exploits1References1
NVD
NVD
added 2020/01/13 7:15 p.m.24 views

CVE-2020-6949

A privilege escalation issue was discovered in the postUser function in HashBrown CMS through 1.3.3. An editor user can change the password hash of an admin user's account, or otherwise reconfigure that account...

8.8CVSS9AI score0.01281EPSS
Exploits1References1
OSV
OSV
added 2020/01/13 7:15 p.m.20 views

CVE-2020-6949

A privilege escalation issue was discovered in the postUser function in HashBrown CMS through 1.3.3. An editor user can change the password hash of an admin user's account, or otherwise reconfigure that account...

8.8CVSS7.3AI score
Exploits0References1
OSV
OSV
added 2020/01/13 7:15 p.m.21 views

CVE-2020-6948

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

9.8CVSS7.8AI score
Exploits0References1
Prion
Prion
added 2020/01/13 7:15 p.m.19 views

Remote code execution

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

7.5CVSS9.7AI score0.03573EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/01/13 7:15 p.m.20 views

Privilege escalation

A privilege escalation issue was discovered in the postUser function in HashBrown CMS through 1.3.3. An editor user can change the password hash of an admin user's account, or otherwise reconfigure that account...

6.5CVSS8.9AI score0.01281EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder