Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:34 a.m.10 views

CVE-2024-41808

The OpenObserve open-source observability platform provides the ability to filter logs in a dashboard by the values uploaded in a given log. However, all versions of the platform through 0.9.1 do not sanitize user input in the filter selection menu, which may result in complete account takeover. ...

8.8CVSS5.6AI score0.00528EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.31 views

EUVD-2024-0448

Malicious code in bioql PyPI...

7.4CVSS7.3AI score0.00977EPSS
Exploits1References8
CVE
CVE
added 2025/07/16 2:21 p.m.20 views

CVE-2025-53925

CVE-2025-53925 affects Emlog up to version 2.5.17. A cross-site scripting (XSS) flaw exists in the file upload functionality that lets an authenticated user upload an SVG containing JavaScript, which can be executed in the victim’s context. The root cause is insufficient handling/cleanup of uploa...

5.4CVSS5.4AI score0.0025EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.6 views

CVE-2023-42443

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine EVM. In version 0.3.9 and prior, under certain conditions, the memory used by the builtins rawcall, createfromblueprint and createcopyof can be corrupted. For rawcall, the argument buffer of the call can be corrupted,...

8.1CVSS7AI score0.00696EPSS
Exploits1References1
Patchstack
Patchstack
added 2022/04/08 12:0 a.m.28 views

WordPress Chaty plugin <= 2.8.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Asif Nawaz Minhas Patchstack Alliance in WordPress Chaty plugin versions = 2.8.3. Solution No patched version is available...

4.8CVSS2.8AI score0.00576EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder