Lucene search
+L

8 matches found

OSV
OSV
added 2026/06/24 5:25 p.m.3 views

CVE-2026-48703 Warp: Command Injection via Warp code search tool arguments

Warp is an agentic development environment. From 0.2025.04.09.08.11.stable00 until 0.2026.05.06.15.42.stable01, Warp contains a command execution policy bypass in Agent code search tools. The affected Grep and FileGlob actions are authorized as read/search operations, but their implementations...

7.8CVSS6.2AI score0.00177EPSS
Exploits0References4
NVD
NVD
added 2025/12/11 12:16 a.m.11 views

CVE-2025-67644

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. Versions 3.0.0 and below are vulnerable to SQL injection through the checkpoint implementation. Checkpoint allows attackers to manipulate SQL queries through...

7.8CVSS0.02109EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-3684

Malicious code in bioql PyPI...

8CVSS8.7AI score0.02115EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2022/07/11 12:0 a.m.25 views

phpMyAdmin 4.9.x < 4.9.5 Multiple Vulnerabilities

The version of phpMyAdmin installed on the remote web server is 4.9.x prior to 4.9.5 or 5.0.x prior to 5.0.2. It is, therefore, affected by multiple vulnerabilities. - A malicious user may be able to create a specially crafted username leading to a SQL injection. - A malicious user may be able to...

8CVSS7.3AI score0.02694EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/07/11 12:0 a.m.85 views

phpMyAdmin 5.0.x < 5.0.2 Multiple Vulnerabilities

The version of phpMyAdmin installed on the remote web server is 4.9.x prior to 4.9.5 or 5.0.x prior to 5.0.2. It is, therefore, affected by multiple vulnerabilities. - A malicious user may be able to create a specially crafted username leading to a SQL injection. - A malicious user may be able to...

8CVSS7.3AI score0.02694EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2022/06/03 7:54 a.m.34 views

USN-5282-1: PDFResurrect vulnerabilities

It was discovered that PDFResurrect was incorrectly handling corrupted PDF files. An attacker could possibly use this issue to cause a buffer overflow, resulting in a denial of service, or arbitrary code execution. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. CVE-2019-14267 It...

7.8CVSS7.3AI score0.07078EPSS
Exploits8
Cvelist
Cvelist
added 2020/03/22 3:48 a.m.63 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8AI score0.02115EPSS
Exploits0References8
Cvelist
Cvelist
added 2008/12/19 5:0 p.m.20 views

CVE-2008-0971

Multiple cross-site scripting XSS vulnerabilities in index.cgi in Barracuda Spam Firewall BSF before 3.5.12.007, Message Archiver before 1.2.1.002, Web Filter before 3.3.0.052, IM Firewall before 3.1.01.017, and Load Balancer before 2.3.024 allow remote attackers to inject arbitrary web script or...

5.7AI score0.01504EPSS
Exploits1References7
Rows per page
Query Builder