Lucene search
K

5 matches found

Snyk
Snyk
added 2026/04/14 10:38 p.m.5 views

SQL Injection

Overview @vendure/core is an A modern, headless ecommerce framework Affected versions of this package are vulnerable to SQL Injection via the ProductService.findOneBySlug function in Admin and Vendure Shop API. An attacker can execute arbitrary SQL commands on the database by supplying a crafted...

9.1CVSS6.1AI score0.01762EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2026/03/31 1:9 p.m.5 views

Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts

Cybersecurity researchers have disclosed a security "blind spot" in Google Cloud's Vertex AI platform that could allow artificial intelligence AI agents to be weaponized by an attacker to gain unauthorized access to sensitive data and compromise an organization's cloud environment. According to...

6.2AI score
Exploits0
Cvelist
Cvelist
added 2024/12/04 11:15 a.m.19 views

CVE-2024-52278

...

Exploits0
OSV
OSV
added 2023/02/22 6:15 p.m.2 views

CVE-2022-41565

The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...

5.4CVSS5.9AI score0.00394EPSS
Exploits0References1
Prion
Prion
added 2018/03/09 5:29 p.m.22 views

Out-of-bounds

Media Gateway Control Protocol MGCP in Huawei DP300 V500R002C00; RP200 V500R002C00SPC200; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an out-of-bounds write vulnerability. An...

4.3CVSS5.9AI score0.00977EPSS
Exploits0References1Affected Software6
Rows per page
Query Builder