Lucene search
+L

22 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43507

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00519EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:12 a.m.8 views

CVE-2023-39807

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a SQL injection vulnerability via the apasswd parameter at /portal/user-register.php...

9.8CVSS8.3AI score0.00519EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:12 a.m.9 views

CVE-2023-39809

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a command injection vulnerability via the systemhostname parameter at /manage/network-basic.php...

9.8CVSS8AI score0.01266EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/27 6:46 p.m.6 views

Malicious code in nvk-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e0570e31c6c015817cd5fce4308786f1fe2264b4c8bb64fab755b0df9ba0c9f7 The OpenSSF Package Analysis project identified 'nvk-tools' @ 1.2.2 npm as malicious. It is considered malicious because: - The package...

6.9AI score
Exploits0
OSV
OSV
added 2024/07/27 6:46 p.m.11 views

MAL-2024-7826 Malicious code in nvk-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e0570e31c6c015817cd5fce4308786f1fe2264b4c8bb64fab755b0df9ba0c9f7 The OpenSSF Package Analysis project identified 'nvk-tools' @ 1.2.2 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/10/04 12:1 p.m.5 views

Malicious code in poc-nvk (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 10eb10880328aea55a7c7620d283f145ebcb574bfc98567eef9ad44d1ee8fcdb The OpenSSF Package Analysis project identified 'poc-nvk' @ 0.1.2 pypi as malicious. It is considered malicious because: - The package...

6.9AI score
Exploits0
OSV
OSV
added 2023/10/04 12:1 p.m.28 views

MAL-2023-8290 Malicious code in poc-nvk (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 10eb10880328aea55a7c7620d283f145ebcb574bfc98567eef9ad44d1ee8fcdb The OpenSSF Package Analysis project identified 'poc-nvk' @ 0.1.2 pypi as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
NVD
NVD
added 2023/08/21 1:15 a.m.23 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password that allows attackers to login with root privileges via the SSH service. The cleartext password corresponding to the $1$4Tmm01jl$7HRvcW.bz7uGmX9hiQWvR hash was not determined by the vulnerability discoverer...

9.8CVSS9.7AI score0.00535EPSS
Exploits0References2
NVD
NVD
added 2023/08/21 1:15 a.m.21 views

CVE-2023-39809

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain an OS command injection vulnerability via shell metacharacters in the systemhostname parameter at /manage/network-basic.php...

9.8CVSS9.8AI score0.01266EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/08/21 1:15 a.m.4 views

CVE-2023-39807

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a SQL injection vulnerability via the apasswd parameter at /portal/user-register.php...

9.8CVSS7.4AI score0.00519EPSS
Exploits0References3
OSV
OSV
added 2023/08/21 1:15 a.m.6 views

CVE-2023-39807

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a SQL injection vulnerability via the apasswd parameter at /portal/user-register.php...

9.8CVSS5.8AI score0.00519EPSS
Exploits0References2
Prion
Prion
added 2023/08/21 1:15 a.m.24 views

Hardcoded credentials

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service...

7.5CVSS9.6AI score0.00535EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/08/21 1:15 a.m.20 views

Sql injection

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a SQL injection vulnerability via the apasswd parameter at /portal/user-register.php...

7.5CVSS9.8AI score0.00519EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/21 12:0 a.m.9 views

CVE-2023-39809

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain an OS command injection vulnerability via shell metacharacters in the systemhostname parameter at /manage/network-basic.php...

7.2AI score0.01266EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/21 12:0 a.m.12 views

CVE-2023-39807

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a SQL injection vulnerability via the apasswd parameter at /portal/user-register.php...

8.3AI score0.00519EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/21 12:0 a.m.10 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password that allows attackers to login with root privileges via the SSH service. The cleartext password corresponding to the $1$4Tmm01jl$7HRvcW.bz7uGmX9hiQWvR hash was not determined by the vulnerability discoverer...

7.2AI score0.00535EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/21 12:0 a.m.32 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password that allows attackers to login with root privileges via the SSH service. The cleartext password corresponding to the $1$4Tmm01jl$7HRvcW.bz7uGmX9hiQWvR hash was not determined by the vulnerability discoverer...

9.8AI score0.00535EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/21 12:0 a.m.32 views

CVE-2023-39809

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain an OS command injection vulnerability via shell metacharacters in the systemhostname parameter at /manage/network-basic.php...

10AI score0.01266EPSS
Exploits0References2
CVE
CVE
added 2023/08/21 12:0 a.m.52 views

CVE-2023-39807

CVE-2023-39807 affects N.V.K. INTER CO., LTD. iBSG v3.5. The vulnerability is a SQL injection via the a_passwd parameter in the /portal/user-register.php endpoint, enabling potential unauthorized data access or manipulation. The CVSS v3.1 metrics indicate a high-severity, network-exposed issue wi...

9.8CVSS9.7AI score0.00519EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/08/21 12:0 a.m.47 views

CVE-2023-39809

CVE-2023-39809 affects NVK iBSG v3.5, with a command injection vulnerability through the system_hostname parameter at /manage/network-basic.php. The CVSS 3.1 vector shows high impact (C/H/I/A) and network access with no privileges required, no user interaction, and unchanged scope. The available ...

9.8CVSS7.2AI score0.01266EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder