Lucene search
K

145 matches found

RedhatCVE
RedhatCVE
added 2026/02/07 7:30 p.m.6 views

CVE-2025-13523

Mattermost Confluence plugin version 1.7.0 fails to properly escape user-controlled display names in HTML template rendering which allows authenticated Confluence users with malicious display names to execute arbitrary JavaScript in victim browsers via sending a specially crafted OAuth2 connectio...

7.7CVSS5.7AI score0.00189EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.33 views

EUVD-2025-24180

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00203EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24176

Malicious code in bioql PyPI...

5.9CVSS6.3AI score0.00283EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24179

Malicious code in bioql PyPI...

6.4CVSS6.3AI score0.00175EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24177

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00335EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.24 views

EUVD-2025-24175

Malicious code in bioql PyPI...

3.7CVSS6.3AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24170

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00335EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-24172

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00295EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24173

Malicious code in bioql PyPI...

5CVSS6.3AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2025-24181

Malicious code in bioql PyPI...

4CVSS6.3AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2025-24174

Malicious code in bioql PyPI...

4CVSS6.3AI score0.00196EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2025-24178

Malicious code in bioql PyPI...

3.7CVSS6.3AI score0.00247EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.25 views

EUVD-2025-24169

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00197EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-24171

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00239EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/21 11:22 p.m.5 views

SUSE CVE-2025-44001

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the channel which allows attackers to get channel subscription details without proper access to the channel via API call to the Get Channel Subscriptions details endpoint...

4CVSS6.9AI score0.00206EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/21 11:22 p.m.4 views

SUSE CVE-2025-49221

Mattermost Confluence Plugin version 1.5.0 fails to enforce authentication of the user to the Mattermost instance which allows unauthenticated attackers to access subscription details without via API call to GET subscription endpoint...

3.7CVSS7.2AI score0.00247EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/21 11:22 p.m.3 views

SUSE CVE-2025-52931

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to update channel subscription endpoint with an invalid request body...

7.5CVSS7AI score0.00335EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/21 11:21 p.m.4 views

SUSE CVE-2025-53857

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the channel which allows attackers to get channel subscription details without proper access to the channel via API call to the GET autocomplete/GetChannelSubscriptions endpoint...

3.7CVSS6.9AI score0.00206EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/21 11:21 p.m.4 views

SUSE CVE-2025-54463

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

7.5CVSS7AI score0.00295EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/21 11:21 p.m.5 views

SUSE CVE-2025-54478

Mattermost Confluence Plugin version 1.5.0 fails to enforce authentication of the user to the Mattermost instance which allows unauthenticated attackers to edit channel subscriptions via API call to the edit channel subscription endpoint...

5.3CVSS7.2AI score0.00239EPSS
Exploits0References2
Rows per page
Query Builder