Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/01/02 7:18 p.m.4 views

CVE-2026-21446 Bagisto Missing Authentication on Installer API Endpoints

Bagisto is an open source laravel eCommerce platform. In versions on the 2.3 branch prior to 2.3.10, API routes remain active even after initial installation is complete. The underlying API endpoints /install/api/ are directly accessible and exploitable without any authentication. An attacker can...

9.3CVSS6.4AI score0.00583EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4940

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00875EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2022/09/26 12:0 a.m.281 views

LivelyCart Pro 3 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

7.4AI score
Exploits0
Snyk
Snyk
added 2020/11/30 12:6 p.m.4 views

Cross-site Scripting (XSS)

Overview s-cart/core is a free Laravel e-commerce for business. Affected versions of this package are vulnerable to Cross-site Scripting XSS. The search functionality of the admin dashboard in core/src/Admin/Controllers/AdminOrderController.phpindex is vulnerable to XSS. PoC:...

7.2CVSS5.4AI score0.00873EPSS
Exploits1References2
Rows per page
Query Builder