Lucene search
+L

24 matches found

Vulnrichment
Vulnrichment
added 2026/02/18 12:0 a.m.5 views

CVE-2025-65519

mayswind ezbookkeeping versions 1.2.0 and earlier contain a critical vulnerability in JSON and XML file import processing. The application fails to validate nesting depth during parsing operations, allowing authenticated attackers to trigger denial of service conditions by uploading deeply nested...

5.6AI score0.00288EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53641

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00709EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-53640

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.0043EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2025/03/14 3:0 a.m.3 views

SUSE CVE-2024-57604

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

9.8CVSS7.5AI score0.00709EPSS
Exploits1References2
OSV
OSV
added 2025/03/03 7:22 p.m.29 views

GO-2025-3474 MaysWind ezBookkeeping has Improper Privilege Management in github.com/mayswind/ezbookkeeping

MaysWind ezBookkeeping has Improper Privilege Management in github.com/mayswind/ezbookkeeping...

9.8CVSS6.8AI score0.00709EPSS
Exploits1References4
OSV
OSV
added 2025/03/03 7:22 p.m.7 views

GO-2025-3466 Missing rate limit in MaysWind ezBookkeeping in github.com/mayswind/ezbookkeeping

Missing rate limit in MaysWind ezBookkeeping in github.com/mayswind/ezbookkeeping...

6.3CVSS6.3AI score0.0043EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/02/14 1:20 p.m.7 views

CVE-2024-57603

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting...

6.3CVSS7AI score0.0043EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/14 1:19 p.m.11 views

CVE-2024-57604

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

9.8CVSS7AI score0.00709EPSS
Exploits1References1
OSV
OSV
added 2025/02/13 12:33 a.m.7 views

GHSA-772M-773G-QMHC Missing rate limit in MaysWind ezBookkeeping

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting...

6.3CVSS6.5AI score0.0043EPSS
Exploits1References4
OSV
OSV
added 2025/02/13 12:33 a.m.4 views

GHSA-MPG8-8X9C-P9GV MaysWind ezBookkeeping has Improper Privilege Management

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

9.8CVSS7.1AI score0.00709EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2025/02/13 12:33 a.m.19 views

MaysWind ezBookkeeping has Improper Privilege Management

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

9.8CVSS7.1AI score0.00709EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/02/13 12:33 a.m.10 views

Missing rate limit in MaysWind ezBookkeeping

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting...

6.3CVSS7.1AI score0.0043EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/02/12 10:15 p.m.29 views

CVE-2024-57604

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

9.8CVSS0.00709EPSS
Exploits1References2
NVD
NVD
added 2025/02/12 10:15 p.m.16 views

CVE-2024-57603

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting...

6.3CVSS0.0043EPSS
Exploits1References2
CVE
CVE
added 2025/02/12 12:0 a.m.78 views

CVE-2024-57603

CVE-2024-57603 affects MaysWind ezBookkeeping 0.7.0 and describes privilege escalation via lack of rate limiting. The CVSS 3.1 vector (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L) yields a base score of 6.3 (MEDIUM) with network attack vector, low confidentiality/integrity/availability impact, and low pr...

6.3CVSS7.2AI score0.0043EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/02/12 12:0 a.m.88 views

CVE-2024-57604

CVE-2024-57604 affects MaysWind ezBookkeeping 0.7.0. A remote attacker can escalate privileges via the token component. CVSS v3.1 shows: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H with base score 9.8 (CRITICAL). Connected sources also corroborate the same product and issue. The available documents do no...

9.8CVSS7.2AI score0.00709EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/12 12:0 a.m.7 views

CVE-2024-57604

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

7.2AI score0.00709EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/12 12:0 a.m.14 views

CVE-2024-57603

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting...

0.0043EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/12 12:0 a.m.26 views

CVE-2024-57604

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component...

0.00709EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/02/12 12:0 a.m.5 views

CVE-2024-57603

An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting...

6.5AI score0.0043EPSS
Exploits1References2
Rows per page
Query Builder