Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-29625

Malicious code in bioql PyPI...

9.6CVSS6.5AI score0.00398EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/18 5:54 p.m.13 views

CVE-2025-59334

Linkr is a lightweight file delivery system that downloads files from a webserver. Linkr versions through 2.0.0 do not verify the integrity or authenticity of .linkr manifest files before using their contents, allowing a tampered manifest to inject arbitrary file entries into a package...

9.6CVSS8.4AI score0.00398EPSS
Exploits1References1
OSV
OSV
added 2025/09/16 4:48 p.m.6 views

CVE-2025-59334 Linkr allows manifest tampering leading to arbitrary file injection

Linkr is a lightweight file delivery system that downloads files from a webserver. Linkr versions through 2.0.0 do not verify the integrity or authenticity of .linkr manifest files before using their contents, allowing a tampered manifest to inject arbitrary file entries into a package...

9.6CVSS8.4AI score0.00398EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.7 views

PT-2025-38060

Name of the Vulnerable Software and Affected Versions: Linkr versions through 2.0.0 Description: Linkr is a lightweight file delivery system that downloads files from a webserver. Linkr does not verify the integrity or authenticity of .linkr manifest files before using their contents, allowing a...

9.6CVSS8AI score0.00398EPSS
Exploits1References7
OSV
OSV
added 2022/07/05 12:0 a.m.2 views

UBUNTU-CVE-2022-34471

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This...

6.5CVSS6.8AI score0.00248EPSS
Exploits0References4
Rows per page
Query Builder