Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/03/01 1:21 p.m.17 views

CVE-2025-1801

A flaw was found in the Ansible aap-gateway. Concurrent requests handled by the gateway grpc service can result in concurrency issues due to race condition requests against the proxy. This issue potentially allows a less privileged user to obtain the JWT of a greater privileged user, enabling the...

8.1CVSS8.1AI score0.00302EPSS
Exploits0References3
exploitdb
exploitdb
added 2020/10/05 12:0 a.m.763 views

MOVEit Transfer 11.1.1 - 'token' Unauthenticated SQL Injection

Exploit Title: MOVEit Transfer 11.1.1 - 'token' Unauthenticated SQL Injection Google Dork: inurl:human.aspx intext:moveit Date: 2020-10-05 Exploit Author: Aviv Beniash Vendor Homepage: https://www.ipswitch.com/ Version: MOVEit Transfer 2018 SP2 before 10.2.4, 2019 before 11.0.2, and 2019.1 before...

9.4CVSS0.7AI score0.05187EPSS
Exploits4
osv
osv
added 2020/09/01 8:47 p.m.10 views

GHSA-M852-866J-69J8 Malicious Package in eslint-config-airbnb-standard

Version 2.0.0 of eslint-config-airbnb-standard was published with a bundled version of eslint-scope that was found to contain malicious code. This code would read the users .npmrc file and send it's contents to a remote server. Recommendation The best course of action if you found this package...

9.8CVSS7.3AI score
Exploits0References1
github
github
added 2018/08/13 8:49 p.m.18 views

Moderate severity vulnerability that affects doorkeeper

Withdrawn, accidental duplicate publish. The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification...

9.1CVSS4.4AI score0.04723EPSS
Exploits0References2Affected Software1
osv
osv
added 2018/07/12 7:52 p.m.6 views

GHSA-HXXF-Q3W9-4XGW Malicious Package in eslint-scope

Version 3.7.2 of eslint-scope was published without authorization and was found to contain malicious code. This code would read the users .npmrc file and send any found authentication tokens to 2 remote servers. Recommendation The best course of action if you found this package installed in your...

9.1CVSS7.5AI score
Exploits0References6
Rows per page
Query Builder