7 matches found
EUVD-2025-31575
Malicious code in bioql PyPI...
CVE-2025-55795
The openml/openml.org web application version v2.0.20241110 uses incremental user IDs and insufficient email ownership verification during email update workflows. An authenticated attacker controlling a user account with a lower user ID can update their email address to that of another user with ...
CVE-2025-55795
The openml/openml.org web application version v2.0.20241110 uses incremental user IDs and insufficient email ownership verification during email update workflows. An authenticated attacker controlling a user account with a lower user ID can update their email address to that of another user with ...
CVE-2025-55795
The openml/openml.org web application version v2.0.20241110 uses incremental user IDs and insufficient email ownership verification during email update workflows. An authenticated attacker controlling a user account with a lower user ID can update their email address to that of another user with ...
PT-2025-39831
Name of the Vulnerable Software and Affected Versions openml/openml.org web application version v2.0.20241110 Description The web application exhibits a flaw where insufficient email ownership verification during email update workflows, combined with incremental user IDs, allows an authenticated...
CVE-2025-55795
OpenML OpenML.org web app v2.0.20241110 is affected by CVE-2025-55795 due to incremental user IDs and insufficient email ownership verification during email updates. An authenticated attacker with a lower user ID can reassign their email to a higher-ID user, causing the victim to be locked out an...
CVE-2020-10129 CVE-2020-10129
SearchBlox before Version 9.2.1 is vulnerable to Privileged Escalation-Lower user is able to access Admin functionality...