Lucene search
K

136 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-23748

Malware in sbrugna...

5.3CVSS5.6AI score0.01117EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2005-2429

Malware in sbrugna...

5CVSS6.1AI score0.73635EPSS
Exploits10References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2000-0102

Malware in sbrugna...

7.5CVSS6.4AI score0.02085EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-22114

Malicious code in bioql PyPI...

6.5CVSS9.1AI score0.00482EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4618

Malicious code in bioql PyPI...

4CVSS6.3AI score0.0138EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-28429

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00354EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-32240

Malicious code in bioql PyPI...

2.1CVSS6.6AI score0.0035EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27980

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00228EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/29 12:0 a.m.5 views

FreshRSS 访问控制错误漏洞

FreshRSS is a free, self-hosted RSS aggregator from FreshRSS Open Source. An access control error vulnerability exists in FreshRSS versions 1.16.0 through 1.26.3, which stems from an unauthorized attacker can create an administrator account using hidden fields when the registration feature is...

9.8CVSS6.8AI score0.00495EPSS
Exploits1References3
Snyk
Snyk
added 2025/09/26 9:31 a.m.2 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the Connection module. An attacker can access sensitive connection details by using READ permissions through both the API and the UI due to the regression that allows to bypass the...

7.1CVSS6.7AI score0.00903EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-1779

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When dynamic templates are used OTRSTicketForms, admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects:...

4.9CVSS6AI score0.00995EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-43429

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the view hidden user fields...

5.3CVSS5.4AI score0.00323EPSS
Exploits0References2
OSV
OSV
added 2025/05/26 1:15 p.m.4 views

CVE-2025-40667

Missing authorization vulnerability in TCMAN's GIM v11. This allows an authenticated attacker to access any functionality of the application even when they are not available through the user interface. To exploit the vulnerability the attacker must modify the HTTP code of the response from ‘302...

6.5CVSS5.8AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:24 a.m.8 views

CVE-2024-4604

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Magarsus Consultancy SSO Single Sign On allows Manipulating Hidden Fields. This issue affects SSO Single Sign On: from 1.0 before 1.1...

6.1CVSS5.8AI score0.00242EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:44 a.m.6 views

CVE-2023-30843

Payload is a free and open source headless content management system. In versions prior to 1.7.0, if a user has access to documents that contain hidden fields or fields they do not have access to, the user could reverse-engineer those values via brute force. Version 1.7.0 contains a patch. As a...

7.4CVSS6.8AI score0.0063EPSS
Exploits0References1
OSV
OSV
added 2025/05/05 6:51 p.m.17 views

GHSA-HG9M-67MM-7PG3 Keystone has an unintended `isFilterable` bypass that can be used as an oracle to match hidden fields

Summary field.isFilterable access control can be bypassed in update and delete mutations by adding additional unique filters. These filters can be used as an oracle to probe the existence or value of otherwise unreadable fields. Specifically, when a mutation includes a where clause with multiple...

3.1CVSS6.6AI score0.00234EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 9:42 a.m.12 views

CVE-2024-30527

Improper Validation of Specified Quantity in Input vulnerability in Tips and Tricks HQ WP Express Checkout Accept PayPal Payments allows Manipulating Hidden Fields.This issue affects WP Express Checkout Accept PayPal Payments: from n/a through 2.3.7...

7.5CVSS6.8AI score0.00521EPSS
Exploits0References1
OSV
OSV
added 2024/11/11 1:15 p.m.2 views

UBUNTU-CVE-2024-43429

A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the "view hidden user fields" capability having access to the information...

5.3CVSS5.7AI score0.00323EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2024/06/26 3:15 p.m.5 views

CVE-2024-4604

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Magarsus Consultancy SSO Single Sign On allows Manipulating Hidden Fields. This issue affects SSO Single Sign On: from 1.0 before 1.1...

6.1CVSS5.8AI score0.00242EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/06/26 3:15 p.m.17 views

CVE-2024-4604

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Magarsus Consultancy SSO Single Sign On allows Manipulating Hidden Fields. This issue affects SSO Single Sign On: from 1.0 before 1.1...

6.1CVSS0.00242EPSS
Exploits0References2
Rows per page
Query Builder