Lucene search
K

259 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-2968

Malware in sbrugna...

8.8CVSS8.8AI score0.01452EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-7063

Malware in sbrugna...

6.5CVSS6.6AI score0.00727EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-4524

Malware in sbrugna...

4.3CVSS6.3AI score0.01637EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-26232

Malware in sbrugna...

5.3CVSS5.2AI score0.01134EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-26895

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01368EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-36918

Malicious code in bioql PyPI...

3.1CVSS4.5AI score0.00563EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-41841

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00497EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-40083

Malicious code in bioql PyPI...

7.2CVSS6.9AI score0.01108EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-19272

Malicious code in bioql PyPI...

4.3CVSS4.5AI score0.00368EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31649

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00197EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-1730

Malicious code in bioql PyPI...

5.8CVSS4.8AI score0.0083EPSS
Exploits1References5
OSV
OSV
added 2025/09/30 12:30 a.m.3 views

GHSA-PF86-4W35-CJ89 Liferay Portal vulnerable to cross-site scripting in the Calendar widget

Multiple cross-site scripting XSS vulnerabilities in the Calendar widget when inviting users to a event in Liferay Portal 7.4.3.35 through 7.4.3.110, and Liferay DXP 2023.Q4.0 through 2023.Q4.4, 2023.Q3.1 through 2023.Q3.6, 7.4 update 35 through update 92, and 7.3 update 25 through update 35 allo...

4.8CVSS5.9AI score0.00197EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/30 12:0 a.m.10 views

PT-2025-40049

Multiple cross-site scripting XSS vulnerabilities in the Calendar widget when inviting users to a event in Liferay Portal 7.4.3.35 through 7.4.3.110, and Liferay DXP 2023.Q4.0 through 2023.Q4.4, 2023.Q3.1 through 2023.Q3.6, 7.4 update 35 through update 92, and 7.3 update 25 through update 35 allo...

4.8CVSS5.9AI score0.00197EPSS
Exploits0References4
Hacker One
Hacker One
added 2025/09/24 5:57 a.m.8 views

Omise: 2FA requirement bypass when inviting team members

The application's requirement for users to enable 2FA before sending team invitations was bypassed by modifying client-side responses. This allowed invitations to be sent without enabling 2FA, defeating the security requirement...

5.9AI score
Exploits0
CVE
CVE
added 2025/09/18 2:42 p.m.18 views

CVE-2025-59421

CVE-2025-59421 affects Press, a Frappe custom app running on Frappe Cloud. The issue is a lack of validation and rate limiting that allows a malicious actor to flood a user’s inbox by repeatedly sending duplicate invitations. The vulnerability is mitigated by the fix committed as 83c3fc7676c5dbbe...

6.9CVSS6.3AI score0.0041EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.4 views

PT-2025-38410

Name of the Vulnerable Software and Affected Versions Press versions prior to commit 83c3fc7676c5dbbe1fd5092d21d95a10c7b48615 Description Press, a Frappe custom app used for managing infrastructure, subscriptions, marketplace operations, and software-as-a-service SaaS, is susceptible to a flaw th...

6.9CVSS6.5AI score0.0041EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/18 12:0 a.m.4 views

Press 安全漏洞

Press is a Frappe open source Frappe custom application running Frappe Cloud. A security vulnerability exists in Press, which originates from an attacker being able to send repeated invitations resulting in the user's inbox being flooded...

6.9CVSS6.5AI score0.0041EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-13305

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not invalidating project invitation link upon removing a user fr...

4.3CVSS5.2AI score0.00986EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.4 views

GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition EE is a content management system from the U.S.-based GitLab, Inc. A security vulnerability exists in GitLab Enterprise Edition versions prior to 18.0 through 18.0.4 and 18.1 through 18.1.2, which stems from an authenticated user potentially bypassing group-level user...

2.7CVSS6.3AI score0.00316EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.13 views

Discourse 安全漏洞

Discourse is an open source community discussion platform from Discourse Open Source. The platform includes features such as communities, email, and chat rooms. A security vulnerability exists in Discourse versions prior to 3.4.4, prior to 3.5.0.beta5, and prior to 3.5.0.beta6-dev, which stems fr...

7.1CVSS6.5AI score0.00203EPSS
Exploits0References2
Rows per page
Query Builder