Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-0829

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00634EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 11:55 p.m.8 views

CVE-2022-23655

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

5.3CVSS6.8AI score0.00634EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:18 p.m.6 views

CVE-2021-32738

js-stellar-sdk is a Javascript library for communicating with a Stellar Horizon server. The Utils.readChallengeTx function used in SEP-10 Stellar Web Authentication states in its function documentation that it reads and validates the challenge transaction including verifying that the...

6.5CVSS6.8AI score0.00514EPSS
Exploits0References1
EUVD
EUVD
added 2023/10/16 7:39 p.m.7 views

EUVD-2023-54518

The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE...

9.8CVSS9.5AI score0.03283EPSS
Exploits3References1
Prion
Prion
added 2022/02/24 12:15 a.m.19 views

Input validation

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

2.6CVSS5.3AI score0.00634EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/23 11:30 p.m.9 views

CVE-2022-23655 Missing server signature validation in OctoberCMS

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

4.8CVSS5.3AI score0.00634EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/02/23 11:30 p.m.42 views

CVE-2022-23655 Missing server signature validation in OctoberCMS

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

4.8CVSS5.6AI score0.00634EPSS
Exploits0References2
Rows per page
Query Builder