Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-23993

Malicious code in bioql PyPI...

6.9CVSS6.5AI score0.00277EPSS
Exploits0References2
NVD
NVD
added 2025/08/08 5:15 p.m.8 views

CVE-2025-47872

The public-facing product registration endpoint server responds differently depending on whether the S/N is valid and unregistered, valid but already registered, or does not exist in the database. Combined with the fact that serial numbers are sequentially assigned, this allows an attacker to gai...

6.9CVSS0.00277EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/08 4:14 p.m.3 views

CVE-2025-47872 EG4 Electronics EG4 Inverters Observable Discrepancy

The public-facing product registration endpoint server responds differently depending on whether the S/N is valid and unregistered, valid but already registered, or does not exist in the database. Combined with the fact that serial numbers are sequentially assigned, this allows an attacker to gai...

6.9CVSS6.7AI score0.00277EPSS
Exploits0References2
CVE
CVE
added 2025/08/08 4:14 p.m.18 views

CVE-2025-47872

CVE-2025-47872 affects EG4 Electronics EG4 Inverters. The public-facing product registration endpoint exposes information about serial numbers (SNs) based on their status (valid/unregistered, valid/registered, nonexistent). Because SNs are sequential, an attacker can infer the registration status...

6.9CVSS6.4AI score0.00277EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/26 12:0 a.m.5 views

PT-2022-19963 · Unknown · Sourcecodester Online Market Place Site

Name of the Vulnerable Software and Affected Versions: Sourcecodester Online Market Place Site version 1.0 Description: The issue allows attackers to register as a Seller and then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields. This enables Cross...

5.4CVSS5.1AI score0.00492EPSS
Exploits3References5
Zero Day Initiative
Zero Day Initiative
added 2018/05/04 12:0 a.m.36 views

Trend Micro Encryption for Email Gateway Registration Authentication Bypass Vulnerability

This vulnerability allows remote attackers to reset the Administrator password on vulnerable installations of Trend Micro Encryption for Email Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the product registration process. T...

10CVSS1.5AI score0.10565EPSS
Exploits5References1
Rows per page
Query Builder