Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-17321

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.02294EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-57694

Malicious code in bioql PyPI...

8.8CVSS5.8AI score0.00115EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/05/23 10:20 a.m.5 views

CVE-2025-3895 Low token entropy in MegaBIP

Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value. It allows an unauthenticated attacker who know user login names to brute force these tokens and change account passwords including these belonging to...

9.1CVSS6.6AI score0.00621EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/05/23 10:20 a.m.12 views

CVE-2025-3893 SQL Injection in MegaBIP

While editing pages managed by MegaBIP a user with high privileges is prompted to give a reasoning for performing this action. Input provided by the the user is not sanitized, leading to SQL Injection vulnerability. Version 5.20 of MegaBIP fixes this issue...

8.6CVSS0.00194EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/23 9:19 a.m.1 views

CVE-2024-1576

SQL Injection vulnerability in MegaBIP software allows attacker to obtain site administrator privileges, including access to the administration panel and the ability to change the administrator password. This issue affects MegaBIP software versions through 5.09...

9.8CVSS7.5AI score0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/05/23 12:0 a.m.2 views

PT-2025-22648 · Megabip · Megabip

Name of the Vulnerable Software and Affected Versions: MegaBIP versions prior to 5.20 Description: The issue arises when a user with high privileges is prompted to provide a reasoning for editing pages managed by MegaBIP. The input provided by the user is not sanitized, leading to a SQL Injection...

8.6CVSS7.4AI score0.00194EPSS
Exploits0References11
CVE
CVEadded 2025/01/10 5:50 p.m.39 views

CVE-2024-6662

MegaBIP exposes a CSRF vulnerability in versions below 5.15. The form at /edytor/index.php?id=7,7,0 lacks protection, allowing a logged-in administrator who visits a malicious site to trigger POST actions that could create new accounts and grant administrative permissions. Affected product: MegaB...

8.7CVSS6.6AI score0.00168EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/01/10 5:50 p.m.6 views

CVE-2024-6662 CSRF in MegaBIP

Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery CSRF as the form available under "/edytor/index.php?id=7,7,0" lacks protection mechanisms. A user could be tricked into visiting a malicious website, which would send POST request to this endpoint. If...

8.7CVSS7AI score0.00168EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/06/12 12:0 a.m.1 views

MegaBIP Security Vulnerabilities

MegaBIP is a software used to create BIP websites. A security vulnerability exists in MegaBIP 5.09 and earlier versions that stems from the presence of a SQL injection vulnerability that allows an attacker to gain site administrator privileges, including access to the administration panel and the...

9.8CVSS7.9AI score0.00135EPSS
Exploits0References5
Rows per page
Query Builder