Lucene search
+L

11 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1969

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.01919EPSS
Exploits0References5
redhatcve
redhatcve
added 2025/08/22 12:22 a.m.9 views

CVE-2024-57152

Incorrect access control in the preHandle function of my-site v1.0.2 allows attackers to access sensitive components without authentication via the cn.luischen.interceptor.BaseInterceptor class...

7.5CVSS7.3AI score0.00348EPSS
Exploits1References1
cve
cve
added 2025/08/20 12:0 a.m.21 views

CVE-2024-57152

Summary: CVE-2024-57152 affects my-site v1.0.2 due to incorrect access control in the preHandle function of the cn.luischen.interceptor.BaseInterceptor class, enabling unauthenticated access to sensitive components. The CVSS v3.1 base score is 7.5 (HIGH); attack vector is NETWORK, with LOW attack...

7.5CVSS6.7AI score0.00348EPSS
Exploits1References1Affected Software1
github
github
added 2022/05/24 5:0 p.m.20 views

Magento 2 Community Edition RCE Vulnerability

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage email templates hierarchy to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.8CVSS8.1AI score0.01919EPSS
Exploits0References5Affected Software1
github
github
added 2022/05/24 5:0 p.m.21 views

Magento 2 Community Edition RCE Vulnerability

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage plugin functionality related to email templates to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.8CVSS8.1AI score0.01919EPSS
Exploits0References5Affected Software1
osv
osv
added 2022/05/24 5:0 p.m.11 views

GHSA-2CRC-5VQ6-386R Magento 2 Community Edition RCE Vulnerability

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage plugin functionality related to email templates to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.8CVSS8.9AI score0.01919EPSS
Exploits0References5
nvd
nvd
added 2019/11/05 11:15 p.m.25 views

CVE-2019-8110

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage email templates hierarchy to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.8CVSS8.9AI score0.01919EPSS
Exploits0References1
osv
osv
added 2019/11/05 11:15 p.m.14 views

CVE-2019-8110

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage email templates hierarchy to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.8CVSS7.8AI score
Exploits0References1
osv
osv
added 2019/11/05 11:15 p.m.15 views

CVE-2019-8111

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage plugin functionality related to email templates to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.8CVSS7.9AI score
Exploits0References1
prion
prion
added 2019/11/05 11:15 p.m.17 views

Remote code execution

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage email templates hierarchy to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

6.5CVSS8.9AI score0.01919EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2019/11/05 10:17 p.m.21 views

CVE-2019-8110

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage email templates hierarchy to manipulate the interceptor class in a way that allows an attacker to execute arbitrary code...

8.9AI score0.01919EPSS
Exploits0References1
Rows per page
Query Builder