Lucene search
K

98 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-22740

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.00342EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-38702

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00413EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-47005

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00455EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/31 12:4 a.m.5 views

CVE-2025-9581

A vulnerability was detected in Comfast CF-N1 2.6.0. This impacts the function multipppoe of the file /usr/bin/webmgnt. Performing manipulation of the argument phyinterface results in command injection. The attack may be initiated remotely. The exploit is now public and may be used...

9.8CVSS7.1AI score0.05309EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/20 5:33 p.m.13 views

CVE-2025-55287

Genealogy is a family tree PHP application. Prior to 4.4.0, Authenticated Stored Cross-Site Scripting XSS vulnerability was identified in the Genealogy application. Authenticated attackers could run arbitrary JavaScript in another user’s session, leading to session hijacking, data theft, and UI...

8CVSS6.5AI score0.00298EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/20 5:33 p.m.15 views

CVE-2025-55288

Genealogy is a family tree PHP application. Prior to 4.4.0, Authenticated Reflected Cross-Site Scripting XSS vulnerability was identified in the Genealogy application. Authenticated attackers could run arbitrary JavaScript in another user’s session, leading to session hijacking, data theft, and U...

5.5CVSS5.5AI score0.00272EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/18 4:54 p.m.3 views

CVE-2025-55287 Genealogy has a stored XSS vulnerability

Genealogy is a family tree PHP application. Prior to 4.4.0, Authenticated Stored Cross-Site Scripting XSS vulnerability was identified in the Genealogy application. Authenticated attackers could run arbitrary JavaScript in another user’s session, leading to session hijacking, data theft, and UI...

8CVSS5.6AI score0.00298EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/08/18 4:54 p.m.9 views

CVE-2025-55287 Genealogy has a stored XSS vulnerability

Genealogy is a family tree PHP application. Prior to 4.4.0, Authenticated Stored Cross-Site Scripting XSS vulnerability was identified in the Genealogy application. Authenticated attackers could run arbitrary JavaScript in another user’s session, leading to session hijacking, data theft, and UI...

8CVSS0.00298EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/08/18 12:0 a.m.16 views

PT-2025-33675 · Genealogy · Genealogy

Name of the Vulnerable Software and Affected Versions: Genealogy versions prior to 4.4.0 Description: Genealogy is a family tree PHP application susceptible to an authenticated reflected cross-site scripting XSS issue. An attacker with valid credentials can execute arbitrary JavaScript code withi...

5.5CVSS6.3AI score0.00272EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/08/18 12:0 a.m.6 views

PT-2025-33674 · Genealogy · Genealogy

Name of the Vulnerable Software and Affected Versions: Genealogy versions prior to 4.4.0 Description: Genealogy is a family tree PHP application susceptible to an authenticated stored cross-site scripting XSS issue. Attackers with valid credentials can execute arbitrary JavaScript code within...

8CVSS6.2AI score0.00298EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/07/27 7:28 p.m.14 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

8.1CVSS7.1AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/27 7:28 p.m.5 views

CVE-2025-52447

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux set-initial-sql tabdoc command modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12,...

8.1CVSS7.3AI score0.00342EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 7:15 p.m.3 views

CVE-2025-52447

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux set-initial-sql tabdoc command modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12,...

8.1CVSS5.8AI score0.00342EPSS
Exploits0References1
NVD
NVD
added 2025/07/25 7:15 p.m.7 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

8.1CVSS0.00335EPSS
Exploits0References1
NVD
NVD
added 2025/07/25 7:15 p.m.6 views

CVE-2025-52446

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux tab-doc api modules allows Interface Manipulation data access to the production database cluster.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

8CVSS0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 6:53 p.m.6 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

7.1AI score0.00335EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/25 6:53 p.m.25 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

0.00335EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 6:53 p.m.33 views

CVE-2025-52448

CVE-2025-52448 : An authorization bypass in Salesforce Tableau Server on Windows and Linux stems from a vulnerability in the validate-initial-sql API modules that allows interface manipulation and data access to the production database cluster via a user-controlled key. Affected Tableau Server ve...

8.1CVSS6.5AI score0.00335EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/07/25 6:50 p.m.32 views

CVE-2025-52447

Summary of CVE-2025-52447: Affected product is Tableau Server (Salesforce) on Windows and Linux. The vulnerability arises from an authorization bypass through the user-controlled set-initial-sql tabdoc command modules, enabling interface manipulation and potential data access to the production da...

8.1CVSS6.7AI score0.00342EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/25 6:50 p.m.4 views

CVE-2025-52447

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux set-initial-sql tabdoc command modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12,...

7.2AI score0.00342EPSS
Exploits0References1
Rows per page
Query Builder