Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

12 matches found

RedhatCVE
RedhatCVEadded 2026/05/18 7:59 p.m.5 views

CVE-2025-67031

ORSEE Online Recruitment System for Economic Experiments 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. Certain field configurations accept values beginning with the prefix "func:" which are passed directly into an eval...

6.3CVSS5.8AI score0.00252EPSS
Exploits0References1
NVD
NVDadded 2026/05/15 8:16 p.m.3 views

CVE-2025-67031

ORSEE Online Recruitment System for Economic Experiments 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. Certain field configurations accept values beginning with the prefix "func:" which are passed directly into an eval...

6.3CVSS0.00252EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/15 12:0 a.m.4 views

CVE-2025-67031

ORSEE Online Recruitment System for Economic Experiments 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. Certain field configurations accept values beginning with the prefix "func:" which are passed directly into an eval...

5.8AI score0.00252EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/15 12:0 a.m.2 views

CVE-2025-67031

ORSEE Online Recruitment System for Economic Experiments 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. Certain field configurations accept values beginning with the prefix "func:" which are passed directly into an eval...

5.8AI score0.00252EPSS
Exploits0References3
CVE
CVEadded 2026/05/15 12:0 a.m.7 views

CVE-2025-67031

ORSEE 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. Certain field configurations accept values starting with the prefix "func:" , which are passed directly into an eval() call inside tagsets/participant.php and tagsets/o...

6.3CVSS5.8AI score0.00252EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-34533

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00181EPSS
Exploits0References2
OSV
OSVadded 2023/03/13 5:15 a.m.1 views

CVE-2022-2258

In affected versions of Octopus Deploy it is possible for a user to view Tagsets without being explicitly assigned permissions to view these items...

4.3CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2023/03/13 5:15 a.m.10 views

CVE-2022-2258

In affected versions of Octopus Deploy it is possible for a user to view Tagsets without being explicitly assigned permissions to view these items...

4.3CVSS4.6AI score0.00181EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/03/13 12:0 a.m.10 views

CVE-2022-2258

In affected versions of Octopus Deploy it is possible for a user to view Tagsets without being explicitly assigned permissions to view these items...

4.9AI score0.00181EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/03/13 12:0 a.m.4 views

PT-2023-12707 · Unknown · Octopus Deploy

Name of the Vulnerable Software and Affected Versions: Octopus Deploy affected versions not specified Description: The issue allows a user to view Tagsets without having explicit permissions to do so. Recommendations: At the moment, there is no information about a newer version that contains a fi...

4.3CVSS6.8AI score0.00181EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2023/03/13 12:0 a.m.6 views

CVE-2022-2258

In affected versions of Octopus Deploy it is possible for a user to view Tagsets without being explicitly assigned permissions to view these items...

4.6AI score0.00181EPSS
Exploits0References1
CVE
CVEadded 2023/03/13 12:0 a.m.43 views

CVE-2022-2258

CVE-2022-2258 affects Octopus Deploy: a user can view Tagsets without explicit view permissions, indicating an information disclosure vulnerability. The available sources describe the issue but do not specify affected versions, root cause details, exploit information, or a confirmed fix/version. ...

4.3CVSS4.6AI score0.00181EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder