EUVD-2025-14495

Malicious code in bioql PyPI...

CVE-2024-46412

CVE-2024-46412 affects Rebuild v3.7.7. The issue is an incorrect access control in the prehandle function, allowing an attacker to bypass authentication by sending a crafted GET request to /commons/ip-location. Public sources in the connected documents corroborate this description across Red Hat ...

PT-2025-34652 · Unknown · Rebuild 3.7.7

Name of the Vulnerable Software and Affected Versions: Rebuild version 3.7.7 Description: An incorrect access control issue exists in the prehandle function. This allows attackers to bypass authentication by sending a crafted GET request to the /commons/ip-location API endpoint. Recommendations:...

CVE-2024-25294

An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the FileDownloader.java, proxyDownload,URL parameters...

CVE-2023-1610

A vulnerability, which was classified as critical, has been found in Rebuild up to 3.2.3. Affected by this issue is some unknown functionality of the file /project/tasks/list. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the publi...

CVE-2025-28056

rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component...

CVE-2025-28056

CVE-2025-28056 affects Rebuild v3.9.0–v3.9.3, with a SQL injection in the /admin/admin-cli/exec component. The primary sources consistently describe the issue and affected versions, but do not provide concrete remediation steps or a confirmed exploit status within the supplied documents. No vendo...

CVE-2025-28056

rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component...

CVE-2025-28056

rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component...

CVE-2024-12995 ruifang-tech Rebuild Project Tasks Section tasks cross site scripting

A vulnerability classified as problematic has been found in ruifang-tech Rebuild 3.8.6. This affects an unknown part of the file /project/050-9000000000000001/tasks of the component Project Tasks Section. The manipulation of the argument description leads to cross site scripting. It is possible t...

CVE-2024-12664

A vulnerability, which was classified as problematic, has been found in ruifang-tech Rebuild 3.8.5. This issue affects some unknown processing of the component Project Task Comment Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

PT-2023-19762 · Rebuild · Rebuild

Name of the Vulnerable Software and Affected Versions: Rebuild version 3.2 Description: A vulnerability has been found and classified as problematic, affecting unknown code and leading to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the publi...