Lucene search
K

52 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-2783

Malware in sbrugna...

6.5CVSS6.6AI score0.01424EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-21455

Malware in sbrugna...

5.8CVSS5.6AI score0.01016EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6317

Malware in sbrugna...

7.5CVSS7.5AI score0.01695EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-32123

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00666EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/15 12:0 a.m.5 views

WordPress plugin B Slider 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. The WordPress B Slider plugin suffers from a server-side request forgery vulnerability that stems from the fsapirequest function not implementing an adequate validation mechanis...

4.3CVSS6.8AI score0.00326EPSS
Exploits0References5
CNVD
CNVD
added 2024/11/22 12:0 a.m.8 views

Apache OFBiz code issue vulnerability (CNVD-2024-46271)

Apache OFBiz is the United States Apache Apache Foundation of a set of enterprise resource planning ERP system. The system provides a set of Java-based Web application components and tools. A security vulnerability exists in Apache OFBiz that stems from the product's failure to properly validate...

9.8CVSS6.7AI score0.01609EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/18 12:0 a.m.5 views

Apache OFBiz 代码问题漏洞

Apache OFBiz is the United States Apache Apache Foundation of a set of enterprise resource planning ERP system. The system provides a set of Java-based Web application components and tools. A security vulnerability exists in Apache OFBiz that stems from the product's failure to properly validate...

9.8CVSS6.7AI score0.01609EPSS
Exploits0References4
NVD
NVD
added 2024/06/28 7:15 a.m.30 views

CVE-2024-39347

Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager SRM before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to access highly sensitive intranet resources via unspecified vectors...

5.9CVSS0.00523EPSS
Exploits0References1
CVE
CVE
added 2024/06/28 6:30 a.m.60 views

CVE-2024-39347

CVE-2024-39347 concerns Synology Router Manager (SRM) firewall: incorrect default permissions in SRM’s firewall functionality allow attackers to access highly sensitive intranet resources. Affected releases include SRM before 1.2.5-8227-11 and before 1.3.1-9346-8. Public sources describe the flaw...

5.9CVSS5.6AI score0.00523EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/28 6:30 a.m.19 views

CVE-2024-39347

Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager SRM before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to access highly sensitive intranet resources via unspecified vectors...

5.9CVSS6.7AI score0.00523EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/14 12:0 a.m.7 views

MyBB Server Request Forgery Vulnerability

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A server request forgery vulnerability exists in MyBB versions prior to 1.8.38, which stems from the...

5CVSS6.8AI score0.00457EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/11/23 12:0 a.m.14 views

Synology Router Manager (SRM) 1.2.x < 1.2.5-8227-11, 1.3.x < 1.3.1-9346-8 Multiple Vulnerabilities (Synology-SA-23:16) - Remote Known Vulnerable Versions Check

Synology Router Manager SRM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.4AI score0.00523EPSS
Exploits0References1
CNVD
CNVD
added 2023/11/21 12:0 a.m.7 views

SuiteCRM Server-Side Request Forgery Vulnerability

SuiteCRM is a customer relationship management system from the SuiteCRM team. SuiteCRM suffers from a server-side request forgery vulnerability that stems from the product's failure to properly validate user input, which can be exploited by an attacker to probe server intranet resources...

5CVSS6.7AI score0.00496EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.4 views

SuiteCRM 安全漏洞

SuiteCRM is a customer relationship management system from the SuiteCRM team. SuiteCRM suffers from a server-side request forgery vulnerability that stems from the product's failure to properly validate user input, which can be exploited by an attacker to probe server intranet resources...

5CVSS6.8AI score0.00496EPSS
Exploits1References3
CNVD
CNVD
added 2023/01/18 12:0 a.m.27 views

Apache Superset Cross-Site Request Forgery Vulnerability

A cross-site request forgery vulnerability exists in Apache Superset, a data visualization and data exploration platform from the Apache Foundation. The vulnerability stems from the failure of two legacy REST APIs for granting and requesting access to properly validate user input, which could be...

8.8CVSS4AI score0.00567EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/01/16 12:0 a.m.5 views

Apache Superset 跨站请求伪造漏洞

A cross-site request forgery vulnerability exists in Apache Superset, a data visualization and data exploration platform from the Apache Foundation. The vulnerability stems from the failure of two legacy REST APIs for granting and requesting access to properly validate user input, which could be...

8.8CVSS8.6AI score0.00567EPSS
Exploits0References2
OSV
OSV
added 2022/10/25 5:15 p.m.4 views

CVE-2022-27622

Server-Side Request Forgery SSRF vulnerability in Package Center functionality in Synology DiskStation Manager DSM before 7.1-42661 allows remote authenticated users to access intranet resources via unspecified vectors...

4.3CVSS5.8AI score0.00666EPSS
Exploits0References1
Prion
Prion
added 2022/10/25 5:15 p.m.22 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF vulnerability in Package Center functionality in Synology DiskStation Manager DSM before 7.1-42661 allows remote authenticated users to access intranet resources via unspecified vectors...

4CVSS4.4AI score0.00666EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/25 4:30 p.m.22 views

CVE-2022-27622

Server-Side Request Forgery SSRF vulnerability in Package Center functionality in Synology DiskStation Manager DSM before 7.1-42661 allows remote authenticated users to access intranet resources via unspecified vectors...

4.1CVSS5.6AI score0.00666EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/25 12:0 a.m.8 views

PT-2022-18528 · Synology · Synology Diskstation Manager

Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 7.1-42661 Description: A Server-Side Request Forgery SSRF issue in the Package Center functionality allows remote authenticated users to access intranet resources via unspecified vectors. Thi...

4.3CVSS6.8AI score0.00666EPSS
Exploits0References4
Rows per page
Query Builder