Lucene search
+L

72 matches found

Positive Technologies
Positive Technologies
added 2025/10/05 12:0 a.m.8 views

PT-2025-40790

Name of the Vulnerable Software and Affected Versions Frappe LMS version 2.35.0 Description A flaw exists in Frappe LMS 2.35.0 within the Assignment Picture Handler component, specifically related to the /files/ file. This issue allows for a remote direct request manipulation, with a high...

6.3CVSS4.2AI score0.00445EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30365

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00253EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-44429

Malicious code in bioql PyPI...

8.8CVSS5.3AI score0.00457EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-33583

Malicious code in bioql PyPI...

6.1CVSS4.2AI score0.00617EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-15993

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00738EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-43868

Malicious code in bioql PyPI...

6.5CVSS6.1AI score0.02556EPSS
Exploits4References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-58078

Malicious code in bioql PyPI...

8.8CVSS7AI score0.00763EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-50700

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00788EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-12333

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00405EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-43950

Malicious code in bioql PyPI...

8.8CVSS7AI score0.00939EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/09/23 5:25 a.m.5 views

CVE-2025-10763

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

6.5CVSS6.5AI score0.00322EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/22 12:21 p.m.10 views

CVE-2025-10741

A security vulnerability has been detected in Selleo Mentingo up to 2025.08.27. The affected element is an unknown function of the component Profile Picture Handler. The manipulation of the argument userAvatar leads to unrestricted upload. The attack is possible to be carried out remotely. The...

6.5CVSS6.5AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2025/09/21 5:15 a.m.6 views

CVE-2025-10763

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

6.5CVSS0.00322EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/21 5:2 a.m.16 views

CVE-2025-10763 academico-sis academico Profile Picture edit-photo unrestricted upload

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

6.5CVSS0.00322EPSS
Exploits0References4
CVE
CVE
added 2025/09/21 5:2 a.m.15 views

CVE-2025-10763

CVE-2025-10763 affects Academico-sis (Profile Picture Handler, /edit-photo). Multiple connected documents confirm an unrestricted upload vulnerability in that endpoint, enabling remote abuse due to missing upload restrictions. The issue is tied to the Profile Picture Handler component and is expl...

6.5CVSS6.3AI score0.00322EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/21 12:0 a.m.4 views

PT-2025-38658

Name of the Vulnerable Software and Affected Versions academico-sis versions prior to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab Description A vulnerability exists in academico-sis related to the Profile Picture Handler component. The issue involves unrestricted upload via the /edit-photo file. Thi...

6.5CVSS6.2AI score0.00322EPSS
Exploits0References7
NVD
NVD
added 2025/09/20 12:15 p.m.4 views

CVE-2025-10741

A security vulnerability has been detected in Selleo Mentingo up to 2025.08.27. The affected element is an unknown function of the component Profile Picture Handler. The manipulation of the argument userAvatar leads to unrestricted upload. The attack is possible to be carried out remotely. The...

6.5CVSS0.00253EPSS
Exploits0References5
CVE
CVE
added 2025/09/20 12:2 p.m.18 views

CVE-2025-10741

CVE-2025-10741 affects Selleo Mentingo’s Profile Picture Handler. The root cause is manipulation of the userAvatar argument, enabling unrestricted file uploads in versions up to 2025.08.27 (before 2025.08.28). Exploitation is possible remotely and the exploit has been publicly disclosed, with PoC...

6.5CVSS6.2AI score0.00253EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/20 12:0 a.m.5 views

Selleo Mentingo 代码问题漏洞

Selleo Mentingo is an in-house training and employee development platform from the Polish company Selleo. A code issue vulnerability exists in Selleo Mentingo version 2025.08.27 and earlier, which stems from insufficient validation of the parameter userAvatar in the Profile Picture Handler...

6.5CVSS6.6AI score0.00253EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/20 12:0 a.m.8 views

PT-2025-38637

Name of the Vulnerable Software and Affected Versions Selleo Mentingo versions prior to 2025.08.28 Description A security issue has been identified in Selleo Mentingo. The vulnerability resides in an unknown function within the Profile Picture Handler component. Manipulation of the userAvatar...

6.5CVSS6.1AI score0.00253EPSS
Exploits0References8
Rows per page
Query Builder