5 matches found
EUVD-2025-22766
Malicious code in bioql PyPI...
EUVD-2025-22264
Malicious code in bioql PyPI...
CVE-2025-54129
HAXiam is a packaging wrapper for HAXcms which allows anyone to spawn their own microsite management platform. In versions 11.0.4 and below, the application returns a 200 response when requesting the data of a valid user and a 404 response when requesting the data of an invalid user. This can be...
CVE-2025-54129 HAXiam allows for User Enumeration
HAXiam is a packaging wrapper for HAXcms which allows anyone to spawn their own microsite management platform. In versions 11.0.4 and below, the application returns a 200 response when requesting the data of a valid user and a 404 response when requesting the data of an invalid user. This can be...
CVE-2025-54129
CVE-2025-54129 affects HAXiam, a packaging wrapper for HAXcms. In versions 11.0.4 and earlier, the application reveals user-existence by returning 200 for valid user data requests and 404 for invalid ones, enabling an automated brute-force enumeration of usernames. This behavior can be combined w...