Lucene search
+L

410 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:33 a.m.7 views

CVE-2019-16394

SPIP before 3.1.11 and 3.2 before 3.2.5 provides different error messages from the password-reminder page depending on whether an e-mail address exists, which might help attackers to enumerate subscribers...

5.3CVSS6.7AI score0.07538EPSS
Exploits2References1
Snyk
Snyk
added 2026/01/01 4:55 a.m.3 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the /api/v1/user endpoint returning different responses for failed authentication attempts depending on whether a username exists. An attacker can enumerate valid usernames by analyzing the variations in...

6.9CVSS6.6AI score0.00356EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/12 6:37 a.m.2 views

Malicious Package

Overview hl-naduccio is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

9.8CVSS6.8AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/08 12:55 a.m.12 views

CVE-2025-63640

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting XSS in the "Medicine Name" and "Notes Optional" fields when creating an "Upcoming Reminder", allowing an attacker to inject arbitrary potentially malicious HTML/JavaScript code that executes in the victim's browser up...

6.1CVSS6.3AI score0.0022EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/07 9:31 p.m.5 views

EUVD-2025-38300

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting XSS in the "Medicine Name" and "Notes Optional" fields when creating an "Upcoming Reminder", allowing an attacker to inject arbitrary potentially malicious HTML/JavaScript code that executes in the victim's browser up...

5.8AI score0.0022EPSS
Exploits1References3
NVD
NVD
added 2025/11/07 8:15 p.m.8 views

CVE-2025-63640

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting XSS in the "Medicine Name" and "Notes Optional" fields when creating an "Upcoming Reminder", allowing an attacker to inject arbitrary potentially malicious HTML/JavaScript code that executes in the victim's browser up...

6.1CVSS0.0022EPSS
Exploits1References2
OSV
OSV
added 2025/11/07 8:15 p.m.6 views

CVE-2025-63640

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting XSS in the "Medicine Name" and "Notes Optional" fields when creating an "Upcoming Reminder", allowing an attacker to inject arbitrary potentially malicious HTML/JavaScript code that executes in the victim's browser up...

6.1CVSS5.9AI score0.0022EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/07 12:0 a.m.6 views

Sourcecodester Medicine Reminder App 安全漏洞

SourceCodester Medicine Reminder App is an open source medication reminder application from SourceCodester. A security vulnerability exists in version 1.0 of the Sourcecodester Medicine Reminder App, which stems from the Medicine Name and Notes Optional fields not properly filtering inputs, which...

6.1CVSS6AI score0.0022EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/07 12:0 a.m.12 views

CVE-2025-63640

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting XSS in the "Medicine Name" and "Notes Optional" fields when creating an "Upcoming Reminder", allowing an attacker to inject arbitrary potentially malicious HTML/JavaScript code that executes in the victim's browser up...

0.0022EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/07 12:0 a.m.6 views

PT-2025-45497

Name of the Vulnerable Software and Affected Versions Sourcecodester Medicine Reminder App version 1.0 Description The application is susceptible to Cross-Site Scripting XSS. An attacker can inject potentially malicious HTML/JavaScript code into the "Medicine Name" and "Notes Optional" fields whe...

6.6AI score0.0022EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/07 12:0 a.m.3 views

CVE-2025-63640

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting XSS in the "Medicine Name" and "Notes Optional" fields when creating an "Upcoming Reminder", allowing an attacker to inject arbitrary potentially malicious HTML/JavaScript code that executes in the victim's browser up...

5.9AI score0.0022EPSS
Exploits1References2
CVE
CVE
added 2025/11/07 12:0 a.m.20 views

CVE-2025-63640

CVE-2025-63640 affects SourceCodester Medicine Reminder App v1.0. The vulnerability is a Cross-Site Scripting (XSS) flaw in the Medicine Name and Notes (Optional) fields when creating an Upcoming Reminder . The root cause is improper input handling/filtration that allows injection of arbitrary HT...

6.1CVSS5.9AI score0.0022EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2025/11/05 6:45 a.m.8 views

Information Disclosure

com.liferay:com.liferay.portal.security.audit.event.generators.user.management is vulnerable to Information Disclosure. The vulnerability is due to audit events recording users’ password reminder answers in audit logs, which allows remote authenticated users to retrieve those answers via the audi...

6.9CVSS7AI score0.00328EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-0596

Malware in sbrugna...

6.5CVSS6.4AI score0.00856EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4744

Malware in sbrugna...

7.2CVSS6.4AI score0.00753EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-4860

Malware in sbrugna...

7.5CVSS6.4AI score0.00981EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-3063

Malware in sbrugna...

7.5CVSS6.4AI score0.01164EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6498

Malware in sbrugna...

10CVSS6.4AI score0.01336EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-1028

Malware in sbrugna...

9.8CVSS6AI score0.00658EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2009-0537

Malware in sbrugna...

4.3CVSS6.4AI score0.01022EPSS
Exploits0References4
Rows per page
Query Builder