Lucene search
K

14 matches found

vulnersOsv
vulnersOsv
•added 2026/03/12 5:29 p.m.•10 views

@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2026-32248 via parse-server (>=2.0.8 <=7.5.4)

parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2026-32248 Source advisory: OSV:GHSA-5FW2-8JCV-XH87...

9.8CVSS5.8AI score0.00627EPSS
Exploits0
vulnersOsv
vulnersOsv
•added 2024/02/11 3:30 a.m.•5 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2024-23724 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2024-23724 Source advisory: OSV:GHSA-99VC-XW8J-PHJM...

9CVSS7.2AI score0.03485EPSS
Exploits1
vulnersOsv
vulnersOsv
•added 2024/01/21 6:30 a.m.•6 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2024-23725 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2024-23725 Source advisory: OSV:GHSA-FH38-9FGR-454W...

6.1CVSS6.3AI score0.00436EPSS
Exploits0
vulnersOsv
vulnersOsv
•added 2023/08/15 8:35 p.m.•6 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2023-40028 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2023-40028 Source advisory: OSV:GHSA-9C9V-W225-V5RG...

6.5CVSS6.5AI score0.57565EPSS
Exploits12
vulnersOsv
vulnersOsv
•added 2023/05/05 6:30 a.m.•4 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2023-32235 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2023-32235 Source advisory: OSV:GHSA-WF7X-FH6W-34R6...

7.5CVSS7.1AI score0.39078EPSS
Exploits3
vulnersOsv
vulnersOsv
•added 2023/05/03 9:57 p.m.•4 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2023-31133 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2023-31133 Source advisory: OSV:GHSA-R97Q-GHCH-82J9...

7.5CVSS7.1AI score0.45713EPSS
Exploits0
Code423n4
Code423n4
•added 2022/09/01 12:0 a.m.•11 views

The users are not able to withdraw the swapped amount

Lines of code Vulnerability details Impact The user will invoke swap from Operator.sol to swap their OHM tokens. But he will transfer their OHM and will never get the AmountOut Proof of Concept On Operator.sol: 1- invoking swap with tokenIn == ohm 2- the ohm.safeTransferFrommsg.sender, addressthi...

7.2AI score
Exploits0
Code423n4
Code423n4
•added 2022/09/01 12:0 a.m.•12 views

possibility of front-run on swap()

Lines of code Vulnerability details Impact The user swapper could lose all their money Proof of Concept 1- the user invokes swap with tokenIn == ohm 2- on this line MINTR.burnOhmaddressthis, amountIn; this user send their money to the TRSRY.sol 3- keeper invoke beat to update the price 4- here...

6.8AI score
Exploits0
vulnersOsv
vulnersOsv
•added 2022/04/13 12:0 a.m.•6 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2022-28397 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2022-28397 Source advisory: OSV:GHSA-FFHQ-G856-9F2P...

9.8CVSS7.2AI score0.0325EPSS
Exploits1
Openbugbounty
Openbugbounty
•added 2022/03/20 12:51 p.m.•6 views

ohm-audio.nl Improper Access Control vulnerability OBB-2438335

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
vulnersOsv
vulnersOsv
•added 2021/05/06 6:28 p.m.•5 views

ghost-as-middleware (=1.0.0), ghost-blade (=0.1.0) +3 more potentially affected by CVE-2020-8134 via ghost (>=0.11.14 <=1.26.2)

ghost NPM version =0.11.14, =0.1.7, =0.1.10 - persistent-ghost =0.8.2 - sign-alex =1.0.1 Source cves: CVE-2020-8134 Source advisory: OSV:GHSA-Q4H8-7QFF-GH6C...

8.1CVSS7.2AI score0.0122EPSS
Exploits1
Openbugbounty
Openbugbounty
•added 2020/09/29 1:48 p.m.•9 views

ohm-electric.co.jp Cross Site Scripting vulnerability OBB-1372409

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
•added 2017/11/29 6:0 a.m.•16 views

ohm-electric.co.jp XSS vulnerability

Open Bug Bounty ID: OBB-441399 Description| Value ---|--- Affected Website:| ohm-electric.co.jp Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Chea...

6.4AI score
Exploits0
Openbugbounty
Openbugbounty
•added 2016/10/01 9:55 p.m.•14 views

ohm-mag.com XSS vulnerability

Vulnerable URL: http://www.ohm-mag.com/?s=%3C%2Fscript%3E%3Cimg+src%3Dx+onerror%3Dprompt%28%2FXSSPOSED%2F%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2026648 VIP website...

6.2AI score
Exploits0
Rows per page
Query Builder