CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

HackRead•added 2025/12/09 10:14 p.m.•11 views

Spiderman Phishing Kit Targets European Banks with Real-Time Credential Theft

Varonis threat analysts warn about Spiderman, a dangerous new kit that automates attacks against European banks and crypto customers, stealing a victim’s full identity profile...

7AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-43993

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00127EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:40 p.m.•3 views

CVE-2022-40724

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery CSRF through crafted GET requests...

8.8CVSS8.5AI score0.00127EPSS

Exploits0References1

NVD•added 2023/04/25 7:15 p.m.•9 views

CVE-2022-40724

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery CSRF through crafted GET requests...

8.8CVSS7.1AI score0.00127EPSS

Exploits0References1

OSV•added 2023/04/25 7:15 p.m.•1 views

CVE-2022-40724

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery CSRF through crafted GET requests...

8.8CVSS5.8AI score

Exploits0References1

Prion•added 2023/04/25 7:15 p.m.•8 views

Cross site request forgery (csrf)

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery CSRF through crafted GET requests...

6.8CVSS8.7AI score0.00127EPSS

Exploits0References1Affected Software1

CVE•added 2023/04/25 12:0 a.m.•47 views

CVE-2022-40724

CVE-2022-40724 affects PingFederate Local Identity Profiles endpoint /pf/idprofile.ping and is a Cross-Site Request Forgery vulnerability triggered by crafted GET requests. Root cause: CSRF on the /pf/idprofile.ping endpoint as described in the CVE record. Impact, per NVD metrics, include high co...

8.8CVSS7.6AI score0.00127EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/04/25 12:0 a.m.•6 views

CVE-2022-40724 Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint.

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery CSRF through crafted GET requests...

6.4CVSS7.3AI score0.00127EPSS

Exploits0References1

Cvelist•added 2023/04/25 12:0 a.m.•9 views

CVE-2022-40724 Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint.

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery CSRF through crafted GET requests...

6.4CVSS9AI score0.00127EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by