Lucene search
+L

36 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-44635

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00433EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-39448

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00381EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 7:44 a.m.14 views

CVE-2024-44794

A cross-site scripting XSS vulnerability in the component /master/auth/OnedriveRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

6.1CVSS5.9AI score0.00279EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 7:20 a.m.7 views

CVE-2024-44796

A cross-site scripting XSS vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

8CVSS5.9AI score0.00376EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 11:39 p.m.5 views

CVE-2022-41442

PicUploader v2.6.3 was discovered to contain cross-site scripting XSS vulnerability via the setStorageParams function in SettingController.php...

6.1CVSS6.2AI score0.00433EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 11:11 p.m.5 views

CVE-2022-36748

PicUploader v2.6.3 was discovered to contain a cross-site scripting XSS vulnerability via the component /master/index.php...

6.1CVSS6.2AI score0.00381EPSS
Exploits1References1
osv
osv
added 2024/08/26 8:15 p.m.5 views

CVE-2024-44796

A cross-site scripting XSS vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

6.1CVSS5.9AI score0.00376EPSS
Exploits1References3
nvd
nvd
added 2024/08/26 8:15 p.m.34 views

CVE-2024-44794

A cross-site scripting XSS vulnerability in the component /master/auth/OnedriveRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

6.1CVSS0.00279EPSS
Exploits1References2
nvd
nvd
added 2024/08/26 8:15 p.m.25 views

CVE-2024-44796

A cross-site scripting XSS vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

8CVSS0.00376EPSS
Exploits1References2
cve
cve
added 2024/08/26 12:0 a.m.54 views

CVE-2024-44794

CVE-2024-44794 describes a cross-site scripting (XSS) vulnerability in the PicUploader project, specifically in the /master/auth/OnedriveRedirect.php component (commit fcf82ea). The issue arises from unsanitized input in the error_description parameter, allowing an attacker to inject arbitrary we...

6.1CVSS5.6AI score0.00279EPSS
Exploits1References2Affected Software1
vulnrichment
vulnrichment
added 2024/08/26 12:0 a.m.16 views

CVE-2024-44796

A cross-site scripting XSS vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

5.8AI score0.00376EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2024/08/26 12:0 a.m.6 views

PT-2024-31254 · Unknown · Picuploader

Name of the Vulnerable Software and Affected Versions: PicUploader version fcf82ea Description: A cross-site scripting XSS issue exists in the /auth/AzureRedirect.php component, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error description...

8CVSS6.1AI score0.00376EPSS
Exploits1References8
cve
cve
added 2024/08/26 12:0 a.m.58 views

CVE-2024-44796

PicUploader (commit fcf82ea) contains an XSS flaw in the /auth/AzureRedirect.php component. The vulnerability allows an attacker to inject arbitrary web scripts or HTML through the error_description parameter, as described across multiple sources (NVD/Red Hat/CVE listings and PT-Security). Impact...

8CVSS5.6AI score0.00376EPSS
Exploits1References2Affected Software1
vulnrichment
vulnrichment
added 2024/08/26 12:0 a.m.13 views

CVE-2024-44794

A cross-site scripting XSS vulnerability in the component /master/auth/OnedriveRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

5.8AI score0.00279EPSS
Exploits1References3
cnnvd
cnnvd
added 2024/08/26 12:0 a.m.3 views

PicUploader 安全漏洞

PicUploader is a graphic bed tool written in php by Bruce's personal developer. It helps you to quickly upload your images to a cloud image bed and automatically return a Markdown formatted link to the clipboard. PicUploader has a security vulnerability that stems from a cross-site scripting...

8CVSS6.3AI score0.00376EPSS
Exploits1References4
cvelist
cvelist
added 2024/08/26 12:0 a.m.28 views

CVE-2024-44794

A cross-site scripting XSS vulnerability in the component /master/auth/OnedriveRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

0.00279EPSS
Exploits1References2
cvelist
cvelist
added 2024/08/26 12:0 a.m.24 views

CVE-2024-44796

A cross-site scripting XSS vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the errordescription parameter...

0.00376EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2024/08/26 12:0 a.m.7 views

PT-2024-31252 · Unknown · Picuploader

Name of the Vulnerable Software and Affected Versions: PicUploader version fcf82ea Description: A cross-site scripting XSS issue exists in the /master/auth/OnedriveRedirect.php component, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error...

6.1CVSS6AI score0.00279EPSS
Exploits1References7
cnnvd
cnnvd
added 2024/08/26 12:0 a.m.5 views

PicUploader 安全漏洞

PicUploader is a graphic bed tool written in php by Bruce's personal developer. It helps you to quickly upload your images to a cloud image bed and automatically returns a Markdown formatted link to the clipboard. PicUploader has a security vulnerability that stems from the...

6.1CVSS6.3AI score0.00279EPSS
Exploits1References4
osv
osv
added 2022/10/07 10:15 p.m.63 views

CVE-2022-41442

PicUploader v2.6.3 was discovered to contain cross-site scripting XSS vulnerability via the setStorageParams function in SettingController.php...

6.1CVSS6.1AI score0.00433EPSS
Exploits1References2
Rows per page
Query Builder