CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2021-31887

Malicious code in bioql PyPI...

4.7CVSS5AI score0.00329EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-52958

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00033EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-57862

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00131EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:54 p.m.•7 views

CVE-2022-31500

In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions...

7.8CVSS7AI score0.00033EPSS

Exploits0References1

NVD•added 2023/10/12 8:15 p.m.•9 views

CVE-2023-5562

An unsafe default configuration in KNIME Analytics Platform before 5.2.0 allows for a cross-site scripting attack. When KNIME Analytics Platform is used as an executor for either KNIME Server or KNIME Business Hub several JavaScript-based view nodes do not sanitize the data that is displayed by...

6.1CVSS6.1AI score0.00131EPSS

Exploits0References1

OSV•added 2023/10/12 8:15 p.m.•4 views

CVE-2023-5562

6.1CVSS5.8AI score0.00131EPSS

Exploits0References1

Prion•added 2023/10/12 8:15 p.m.•18 views

Cross site scripting

5.8CVSS6AI score0.00131EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/12 7:0 p.m.•14 views

CVE-2023-5562 Unsafe default allows for cross-site scripting attacks in KNIME Server and KNIME Business Hub

6.1CVSS6.3AI score0.00131EPSS

Exploits0References1

Positive Technologies•added 2023/10/12 12:0 a.m.•3 views

PT-2023-32177 · Knime · Knime Analytics Platform

Name of the Vulnerable Software and Affected Versions: KNIME Analytics Platform versions prior to 5.2.0 Description: The issue is related to an unsafe default configuration that allows for a cross-site scripting attack. When KNIME Analytics Platform is used as an executor for either KNIME Server ...

6.1CVSS6AI score0.00131EPSS

Exploits0References6

NVD•added 2022/11/24 7:15 a.m.•13 views

CVE-2022-44749

A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Analytics Platform 3.2.0 and above can result in arbitrary files being overwritten on the user's system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNIME workflow that, when being...

7CVSS0.00056EPSS

Exploits0References1

Prion•added 2022/11/24 7:15 a.m.•12 views

Directory traversal

3.7CVSS7.4AI score0.00056EPSS

Exploits0References1Affected Software1

CVE•added 2022/11/24 6:39 a.m.•53 views

CVE-2022-44749

CVE-2022-44749 affects KNIME Analytics Platform 3.2.0 and later via a directory traversal in ZIP extraction (Zip-Slip). An attacker can craft a KNIME workflow that, when opened by a user, overwrites arbitrary files the user can write to, with the user only needing to open the workflow (no executi...

7CVSS6.7AI score0.00056EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/11/24 6:39 a.m.•15 views

CVE-2022-44749 Opening workflows from untrusted resources may override arbitrary file system contents

5.5CVSS7.6AI score0.00056EPSS

Exploits0References1