Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-3385

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00101EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-27856

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00114EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:57 a.m.4 views

CVE-2024-2913

A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically within the user invite acceptance process. Attackers can exploit this vulnerability by sending multiple concurrent requests to accept a single user invite, allowing the creation of multiple user...

6.5CVSS6.3AI score0.00114EPSS
Exploits1References1
OSV
OSVadded 2024/11/26 6:52 p.m.3 views

CVE-2024-52008 Password Policy Bypass Vulnerability in Fides Webserver

Fides is an open-source privacy engineering platform. The user invite acceptance API endpoint lacks server-side password policy enforcement, allowing users to set arbitrarily weak passwords by bypassing client-side validation. While the UI enforces password complexity requirements, direct API cal...

2CVSS6.5AI score0.00101EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/11/26 12:0 a.m.4 views

PT-2024-35092 · Fides · Fides

Name of the Vulnerable Software and Affected Versions: Fides versions prior to 2.50.0 Description: The user invite acceptance API endpoint /api/v1/user/accept-invite lacks server-side password policy enforcement, allowing users to set arbitrarily weak passwords by bypassing client-side validation...

2CVSS6.9AI score0.00101EPSS
Exploits0References6
OSV
OSVadded 2024/05/07 12:15 a.m.2 views

CVE-2024-2913

A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically within the user invite acceptance process. Attackers can exploit this vulnerability by sending multiple concurrent requests to accept a single user invite, allowing the creation of multiple user...

6.5CVSS6.3AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/06 11:42 p.m.18 views

CVE-2024-2913 Race Condition Vulnerability in mintplex-labs/anything-llm

A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically within the user invite acceptance process. Attackers can exploit this vulnerability by sending multiple concurrent requests to accept a single user invite, allowing the creation of multiple user...

6.5CVSS6.8AI score0.00114EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/05/06 12:0 a.m.2 views

PT-2024-22751 · Unknown · Anything-Llm

Name of the Vulnerable Software and Affected Versions: anything-llm affected versions not specified Description: A race condition vulnerability exists in the user invite acceptance process, allowing attackers to create multiple user accounts from a single invite link by sending multiple concurren...

6.5CVSS6.2AI score0.00114EPSS
Exploits1References6
Rows per page
Query Builder