CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-35023

Malicious code in bioql PyPI...

9.1CVSS9AI score0.00261EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-29772

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.02132EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 10:38 p.m.•6 views

CVE-2022-2782

In affected versions of Octopus Server it is possible for a session token to be valid indefinitely due to improper validation of the session token parameters...

9.1CVSS6.9AI score0.00261EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:31 p.m.•5 views

CVE-2022-25027

The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to bypass authentication and access restricted pages by validating the user's session token when the "Password forgotten?" button is clicked...

7.5CVSS7.4AI score0.01301EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:22 p.m.•4 views

CVE-2020-15270

Parse Server npm package parse-server broadcasts events to all clients without checking if the session token is valid. This allows clients with expired sessions to still receive subscription objects. It is not possible to create subscription objects with invalid session tokens. The issue is not...

4.3CVSS6.7AI score0.00253EPSS

Exploits0

CNNVD•added 2022/10/27 12:0 a.m.•2 views

Octopus Server 代码问题漏洞

Octopus Server is an automated deployment platform. Octopus Server has a security vulnerability that stems from improper validation of its session token parameter resulting in a session token that may be valid indefinitely...

9.1CVSS8.1AI score0.00261EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by