Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-21193

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00109EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-55661

Malicious code in bioql PyPI...

8.3CVSS7AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:12 a.m.10 views

CVE-2024-23734

Cross Site Request Forgery vulnerability in in the upload functionality of the User Profile pages in savignano S/Notify before 2.0.1 for Bitbucket allow attackers to replace S/MIME certificate or PGP keys for arbitrary users via crafted link...

5.2CVSS7.2AI score0.0014EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:50 a.m.20 views

CVE-2024-23737

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

5.4CVSS7.1AI score0.00109EPSS
Exploits0References1
NVD
NVD
added 2024/07/01 10:15 p.m.47 views

CVE-2024-23737

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

5.4CVSS0.00109EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/01 12:0 a.m.9 views

CVE-2024-23736

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Confluence allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

7AI score0.00147EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/01 12:0 a.m.16 views

CVE-2024-23737

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

7AI score0.00109EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/01 12:0 a.m.45 views

CVE-2024-23737

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

0.00109EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/01 12:0 a.m.27 views

CVE-2024-23736

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Confluence allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

0.00147EPSS
Exploits0References1
CVE
CVE
added 2024/07/01 12:0 a.m.67 views

CVE-2024-23737

CVE-2024-23737 describes a CSRF vulnerability in Savignano S/Notify prior to 4.0.2 for Jira that can allow manipulation of a user’s S/MIME certificate or PGP key via a malicious link or email. Affected software: Savignano S/Notify before 4.0.2 for Jira. Root cause: CSRF leading to unintended cert...

5.4CVSS7.1AI score0.00109EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/07/01 12:0 a.m.6 views

Savignano Software Solutions S/Notify Security Breach

Savignano Software Solutions S/Notify is an email encryption program from Savignano Software Solutions, Germany. A security vulnerability previously existed in Savignano Software Solutions S/Notify version 4.0.2. An attacker exploited the vulnerability to manipulate a user's PGP key S/MIME...

5.4CVSS6.7AI score0.00109EPSS
Exploits0References2
NVD
NVD
added 2024/04/10 4:15 p.m.19 views

CVE-2024-23735

Cross Site Scripting XSS vulnerability in in the S/MIME certificate upload functionality of the User Profile pages in savignano S/Notify before 4.0.0 for Confluence allows attackers to manipulate user data via specially crafted certificate...

6.1CVSS5.7AI score0.00213EPSS
Exploits0References2
NVD
NVD
added 2024/04/10 4:15 p.m.28 views

CVE-2024-23734

Cross Site Request Forgery vulnerability in in the upload functionality of the User Profile pages in savignano S/Notify before 2.0.1 for Bitbucket allow attackers to replace S/MIME certificate or PGP keys for arbitrary users via crafted link...

5.2CVSS6.8AI score0.0014EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/10 12:0 a.m.10 views

CVE-2024-23734

Cross Site Request Forgery vulnerability in in the upload functionality of the User Profile pages in savignano S/Notify before 2.0.1 for Bitbucket allow attackers to replace S/MIME certificate or PGP keys for arbitrary users via crafted link...

7.3AI score0.0014EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/10 12:0 a.m.18 views

CVE-2024-23735

Cross Site Scripting XSS vulnerability in in the S/MIME certificate upload functionality of the User Profile pages in savignano S/Notify before 4.0.0 for Confluence allows attackers to manipulate user data via specially crafted certificate...

5.8AI score0.00213EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/10 12:0 a.m.9 views

CVE-2024-23735

Cross Site Scripting XSS vulnerability in in the S/MIME certificate upload functionality of the User Profile pages in savignano S/Notify before 4.0.0 for Confluence allows attackers to manipulate user data via specially crafted certificate...

6.1AI score0.00213EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/10 12:0 a.m.4 views

savignano S/Notify 安全漏洞

savignano S/Notify is savignano's most versatile email encryption solution for Jira, Confluence and Bitbucket. A security vulnerability exists in savignano S/Notify versions prior to 4.0.0 that stems from the presence of a cross-site scripting XSS vulnerability that allows an attacker to manipula...

6.1CVSS5.7AI score0.00213EPSS
Exploits0References3
CVE
CVE
added 2024/04/10 12:0 a.m.66 views

CVE-2024-23735

CVE-2024-23735 describes a Cross Site Scripting (XSS) vulnerability in the S/MIME certificate upload feature on the Savignano S/Notify User Profile pages for Confluence. Affected: Savignano S/Notify versions prior to 4.0.0 (Confluence integration). Nature: XSS via specially crafted certificates i...

6.1CVSS5.9AI score0.00213EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/01/09 7:15 a.m.10 views

CVE-2023-50932

An issue was discovered in savignano S/Notify before 4.0.2 for Confluence. While an administrative user is logged on, the configuration settings of S/Notify can be modified via a CSRF attack. The injection could be initiated by the administrator clicking a malicious link in an email or by visitin...

8.3CVSS8.3AI score0.00173EPSS
Exploits0References1
NVD
NVD
added 2024/01/09 7:15 a.m.5 views

CVE-2023-50931

An issue was discovered in savignano S/Notify before 2.0.1 for Bitbucket. While an administrative user is logged on, the configuration settings of S/Notify can be modified via a CSRF attack. The injection could be initiated by the administrator clicking a malicious link in an email or by visiting...

8.3CVSS8.3AI score0.00173EPSS
Exploits0References1
Rows per page
Query Builder