Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.9 views

CVE-2021-22568

When using the dart pub publish command to publish a package to a third-party package server, the request would be authenticated with an oauth2 accesstoken that is valid for publishing on pub.dev. Using these obtained credentials, an attacker can impersonate the user on pub.dev. We recommend...

8.8CVSS6.8AI score0.00915EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2022-7201

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.01011EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-9707

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00915EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/04/20 12:0 a.m.6 views

PT-2023-18354 · Unknown · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost affected versions not specified Description: Mattermost fails to invalidate existing authorization codes when deauthorizing an OAuth2 app, allowing an attacker possessing an authorization code to generate an access token...

9.1CVSS9.1AI score0.0059EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2022/10/31 12:0 a.m.11 views

CVE-2022-31690

Spring Security, versions 5.7 prior to 5.7.5, and 5.6 prior to 5.6.9, and older unsupported versions could be susceptible to a privilege escalation under certain conditions. A malicious user or attacker can modify a request initiated by the Client via the browser to the Authorization Server which...

8.1AI score0.01011EPSS
Exploits0References2
Rows per page
Query Builder