Lucene search
K

316 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-51851

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.00245EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-2672

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00188EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-6739

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01284EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-2056

Malicious code in bioql PyPI...

8.8CVSS8AI score0.00679EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5306

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.01151EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0658

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00792EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-3736

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00217EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-30286

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00687EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24000

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00873EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-27517

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00328EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-50175

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00638EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-28513

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00892EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/08/11 12:0 a.m.2 views

Belkin F9K1009 / F9K1010 Authentication Bypass

This repository contains a exploit for CVE‑2025‑8730, a critical Authentication Bypass vulnerability affecting the web interface of Belkin F9K1009 and F9K1010 routers. The flaw lies in the session validation logic of the /login.htm file, where improperly handled cookies or crafted requests allow...

10CVSS9.4AI score0.02992EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/08/10 6:14 p.m.3 views

CVE-2025-5095

Burk Technology ARC Solo's password change mechanism can be utilized without proper authentication procedures, allowing an attacker to take over the device. A password change request can be sent directly to the device's HTTP endpoint without providing valid credentials. The system does not enforc...

9.8CVSS7.6AI score0.00873EPSS
Exploits0References1
NVD
NVD
added 2025/08/08 6:15 p.m.4 views

CVE-2025-5095

Burk Technology ARC Solo's password change mechanism can be utilized without proper authentication procedures, allowing an attacker to take over the device. A password change request can be sent directly to the device's HTTP endpoint without providing valid credentials. The system does not enforc...

9.8CVSS0.00873EPSS
Exploits0References2
CVE
CVE
added 2025/08/08 5:24 p.m.21 views

CVE-2025-5095

Burk Technology ARC Solo is affected by CVE-2025-5095: the device’s password-change endpoint accepts requests without valid credentials due to missing authentication/session validation, enabling an attacker to take control of the device. Reports note high-impact outcomes (full compromise risk) wi...

9.8CVSS6.8AI score0.00873EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/07 12:0 a.m.6 views

PT-2025-32330 · Burk Technology · Arc Solo

Name of the Vulnerable Software and Affected Versions: Burk Technology ARC Solo affected versions not specified Description: The password change mechanism in Burk Technology ARC Solo does not require proper authentication, potentially allowing an attacker to take over the device. A password chang...

9.8CVSS6.6AI score0.00873EPSS
Exploits0References11
CVE
CVE
added 2025/07/28 12:0 a.m.23 views

CVE-2025-50489

CVE-2025-50489 affects the PHPGurukul Student Result Management System v2.0, specifically the /srms/change-password.php component. The issue is improper session invalidation, which enables session hijacking attacks. The CVSS details indicate network access with low attack complexity and no privil...

7.5CVSS6.7AI score0.00479EPSS
Exploits1References1Affected Software1
Veracode
Veracode
added 2025/07/17 5:6 a.m.7 views

Improper Authorization

authentik is vulnerable to Improper Authorization. The vulnerability is due to missing session validation for single-use tokens in RAC endpoints, which allows an attacker to reuse a valid token from a shared URL to access another user’s session...

9.6CVSS6.1AI score0.00405EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/16 4:4 p.m.3 views

CVE-2025-53938 WeGIA vulnerable to Authentication Bypass due to Missing Session Validation in multiple endpoints

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. An Authentication Bypass vulnerability was identified in the /dao/verificarrecursoscargo.php endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows unauthenticated...

6.9CVSS6.4AI score0.00626EPSS
Exploits1References1
Rows per page
Query Builder