Lucene search
K

144 matches found

NVD
NVD
added 12 hours ago6 views

CVE-2026-15622

A flaw has been found in poco-ai poco-claw up to 0.5.4. Affected is the function getworkspacefile of the file executormanager/app/api/v1/workspace.py of the component Workspace API. Executing a manipulation of the argument userid can lead to authorization bypass. The attack may be launched...

6.9CVSS
Exploits0References8
CVE
CVE
added 13 hours ago8 views

CVE-2026-15622

The CVE-2026-15622 entry concerns poco-ai poco-claw Workspace API. Affects the function get_workspace_file in executor_manager/app/api/v1/workspace.py; manipulating the user_id parameter can bypass authorization. Impact is an authorization bypass that can be triggered remotely, with a proof-of-co...

6.9CVSS5.9AI score
Exploits0References8
Cvelist
Cvelist
added 13 hours ago9 views

CVE-2026-15622 poco-ai poco-claw Workspace API workspace.py get_workspace_file authorization

A flaw has been found in poco-ai poco-claw up to 0.5.4. Affected is the function getworkspacefile of the file executormanager/app/api/v1/workspace.py of the component Workspace API. Executing a manipulation of the argument userid can lead to authorization bypass. The attack may be launched...

6.9CVSS
Exploits0References8
EUVD
EUVD
added 13 hours ago5 views

EUVD-2026-43599

A flaw has been found in poco-ai poco-claw up to 0.5.4. Affected is the function getworkspacefile of the file executormanager/app/api/v1/workspace.py of the component Workspace API. Executing a manipulation of the argument userid can lead to authorization bypass. The attack may be launched...

6.9CVSS5.9AI score
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/09 8:48 a.m.8 views

CVE-2025-23689

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Poco Blogger Image Import allows Stored XSS.This issue affects Blogger Image Import: from 2.1 through n/a...

7.1CVSS8.6AI score0.00303EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2017-1597

Malware in sbrugna...

6.5CVSS6.7AI score0.01681EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-0388

Malware in sbrugna...

6.4CVSS6.3AI score0.01218EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-0282

Malware in sbrugna...

9.3CVSS8AI score0.01752EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33094

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00378EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-23873

Malicious code in bioql PyPI...

7CVSS6.3AI score0.00132EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-3345

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00303EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-18796

Malicious code in bioql PyPI...

5.5CVSS4.5AI score0.00212EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-6375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in poco up to 1.14.1. It has been rated as problematic. Affected by this issue is the function MultipartInputStream of the file...

5.5CVSS4.9AI score0.00212EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-45766

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - poco v1.14.1-release was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an...

7CVSS6AI score0.00132EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-52389

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer overflow because Poco::UTF32Encoding::convert and...

9.8CVSS6.8AI score0.00851EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/08 11:22 p.m.4 views

SUSE CVE-2025-45766

poco v1.14.1-release was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is...

7CVSS7.2AI score0.00132EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/08 12:29 a.m.19 views

CVE-2025-45766

poco v1.14.1-release was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is...

7CVSS6.7AI score0.00132EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 8:15 p.m.8 views

CVE-2025-45766

poco v1.14.1-release was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is...

7CVSS0.00132EPSS
Exploits0References3
OSV
OSV
added 2025/08/06 8:15 p.m.5 views

DEBIAN-CVE-2025-45766

poco v1.14.1-release was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is...

7CVSS5.2AI score0.00132EPSS
Exploits0References1
OSV
OSV
added 2025/08/06 8:15 p.m.4 views

UBUNTU-CVE-2025-45766

poco v1.14.1-release was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is...

7CVSS5.7AI score0.00132EPSS
Exploits0References6
Rows per page
Query Builder