Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-31382

Malicious code in bioql PyPI...

6.8CVSS6.4AI score0.00643EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2025/05/23 7:58 a.m.9 views

CVE-2024-33669

An issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple requests to HaveIBeenPwned while a password is being typed, which results in an information leak. This allows an attacker capable of observing Passbolt's HTTPS queries to the Pwned Password API to more easily...

6.8CVSS6.8AI score0.00643EPSS
Exploits1References1
OSV
OSV
added 2024/04/26 3:30 a.m.2 views

GHSA-XFQ4-78J7-V594 Passbolt Browser Extension leaks password information

An issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple requests to HaveIBeenPwned while a password is being typed, which results in an information leak. This allows an attacker capable of observing Passbolt's HTTPS queries to the Pwned Password API to more easily...

6.1CVSS7AI score0.00643EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2024/04/26 3:30 a.m.7 views

Passbolt Browser Extension leaks password information

An issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple requests to HaveIBeenPwned while a password is being typed, which results in an information leak. This allows an attacker capable of observing Passbolt's HTTPS queries to the Pwned Password API to more easily...

6.8CVSS6.3AI score0.00643EPSS
Exploits1References7Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/26 12:0 a.m.8 views

CVE-2024-33669

An issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple requests to HaveIBeenPwned while a password is being typed, which results in an information leak. This allows an attacker capable of observing Passbolt's HTTPS queries to the Pwned Password API to more easily...

6.1CVSS6.8AI score0.00643EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/04/26 12:0 a.m.5 views

PT-2024-25426 · Passbolt · Passbolt Browser Extension

Name of the Vulnerable Software and Affected Versions: Passbolt Browser Extension versions prior to 4.6.2 Description: An issue in the Passbolt Browser Extension results in an information leak. As a user types a password, multiple requests are sent to HaveIBeenPwned, allowing an attacker who can...

6.8CVSS6.2AI score0.00643EPSS
Exploits1References12
OSV
OSV
added 2024/04/26 12:0 a.m.5 views

CVE-2024-33669

An issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple requests to HaveIBeenPwned while a password is being typed, which results in an information leak. This allows an attacker capable of observing Passbolt's HTTPS queries to the Pwned Password API to more easily...

6.1CVSS7AI score0.00643EPSS
Exploits1References7
Rows per page
Query Builder