Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-37604

Malicious code in bioql PyPI...

8.8CVSS8.3AI score0.00912EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-36197

Malicious code in bioql PyPI...

8.8CVSS8.3AI score0.00973EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-35834

Malicious code in bioql PyPI...

4.8CVSS5AI score0.00771EPSS
Exploits0References2
NVD
NVD
added 2022/08/22 7:15 p.m.13 views

CVE-2022-32768

Multiple authentication bypass vulnerabilities exist in the objects id handling functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request by an authenticated user can lead to unauthorized access and takeover of resources. An attacker can send an HTTP reque...

4.8CVSS0.00771EPSS
Exploits0References2
OSV
OSV
added 2022/08/22 7:15 p.m.14 views

CVE-2022-34652

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.8CVSS7.8AI score
Exploits0References2
NVD
NVD
added 2022/08/22 7:15 p.m.30 views

CVE-2022-33148

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.8CVSS0.00973EPSS
Exploits0References2
NVD
NVD
added 2022/08/22 7:15 p.m.20 views

CVE-2022-34652

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.8CVSS0.00912EPSS
Exploits0References2
OSV
OSV
added 2022/08/22 7:15 p.m.11 views

CVE-2022-33148

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.8CVSS7.8AI score
Exploits0References2
OSV
OSV
added 2022/08/22 7:15 p.m.26 views

CVE-2022-32768

Multiple authentication bypass vulnerabilities exist in the objects id handling functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request by an authenticated user can lead to unauthorized access and takeover of resources. An attacker can send an HTTP reque...

4.2CVSS7.1AI score
Exploits0References2
Prion
Prion
added 2022/08/22 7:15 p.m.17 views

Authentication flaw

Multiple authentication bypass vulnerabilities exist in the objects id handling functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request by an authenticated user can lead to unauthorized access and takeover of resources. An attacker can send an HTTP reque...

3.6CVSS4.9AI score0.00771EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/08/22 7:15 p.m.18 views

Sql injection

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

6.5CVSS8.9AI score0.00973EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/08/22 7:15 p.m.17 views

Sql injection

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

6.5CVSS8.9AI score0.00912EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/22 6:30 p.m.6 views

CVE-2022-34652

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.3CVSS9AI score0.00912EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/08/22 6:30 p.m.24 views

CVE-2022-34652

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.3CVSS9.2AI score0.00912EPSS
Exploits0References2
CVE
CVE
added 2022/08/22 6:30 p.m.68 views

CVE-2022-34652

WWBN AVideo multiple CVEs describe a SQL injection in ObjectYPT’s Live Schedules feature for version 11.6 and dev master commit 3f7c0364. The vulnerability arises from unsanitized input used to build SQL in ObjectYPT, Live_schedule and related classes (notably description/title fields) via insert...

8.8CVSS8.9AI score0.00912EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/22 6:29 p.m.6 views

CVE-2022-33148

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.3CVSS9AI score0.00973EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/08/22 6:29 p.m.26 views

CVE-2022-33148

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the Live Schedules...

8.3CVSS9.2AI score0.00973EPSS
Exploits0References2
CVE
CVE
added 2022/08/22 6:29 p.m.56 views

CVE-2022-33148

CVE-2022-33148 affects WWBN AVideo 11.6 and dev master (ObjectYPT live schedules). The vulnerability arises from SQL injections in the Live Schedules plugin due to unsanitized inputs (e.g., title/description) being concatenated into SQL within ObjectYPT-based save operations, allowing attackers t...

8.8CVSS8.9AI score0.00973EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/08/22 6:26 p.m.82 views

CVE-2022-32768

CVE-2022-32768 affects WWBN AVideo 11.6 and dev master (commit 3f7c0364) with authentication bypass in the Live Schedules plugin. A authenticated user can guess/sequenced-id objects to takeover or modify another user’s streams by sending crafted requests (e.g., adding live schedules) due to inade...

4.8CVSS4.8AI score0.00771EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/08/22 6:26 p.m.19 views

CVE-2022-32768

Multiple authentication bypass vulnerabilities exist in the objects id handling functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request by an authenticated user can lead to unauthorized access and takeover of resources. An attacker can send an HTTP reque...

4.8CVSS5.2AI score0.00771EPSS
Exploits0References2
Rows per page
Query Builder