Lucene search
K

120 matches found

Vulnrichment
Vulnrichment
added 2026/02/21 4:25 a.m.3 views

CVE-2026-27194 D-Tale affected by Remote Code Execution through the /save-column-filter endpoint

D-Tale is a visualizer for pandas data structures. Versions prior to 3.20.0 are vulnerable to Remote Code Execution through the /save-column-filter endpoint. Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. This issue...

9.3CVSS6.5AI score0.00712EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/21 4:25 a.m.3 views

CVE-2026-27194

D-Tale is a visualizer for pandas data structures. Versions prior to 3.20.0 are vulnerable to Remote Code Execution through the /save-column-filter endpoint. Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. This issue...

9.3CVSS6.7AI score0.00712EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/02/21 4:25 a.m.8 views

CVE-2026-27194 D-Tale affected by Remote Code Execution through the /save-column-filter endpoint

D-Tale is a visualizer for pandas data structures. Versions prior to 3.20.0 are vulnerable to Remote Code Execution through the /save-column-filter endpoint. Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. This issue...

9.3CVSS6.7AI score0.00712EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/21 12:0 a.m.13 views

Man D-Tale 注入漏洞

Man D-Tale is a visualization tool for pandas data structures within the Man company. Versions of Man D-Tale prior to 3.20.0 contained an injection vulnerability. This vulnerability stemmed from a remote code execution flaw through the /save-column-filter endpoint, which could allow attackers to...

9.8CVSS6.6AI score0.00712EPSS
Exploits0References2
OSV
OSV
added 2026/02/19 8:29 p.m.20 views

GHSA-C87C-78RC-VMV2 D-Tale affected by Remote Code Execution through the /save-column-filter endpoint

Impact Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. Patches Users should upgrade to version 3.20.0. Workarounds There are no workarounds for versions 3.20.0...

9.3CVSS6.5AI score0.00712EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/30 3:24 a.m.6 views

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

6.1CVSS6.1AI score0.00218EPSS
Exploits1References1
NVD
NVD
added 2026/01/29 7:16 p.m.18 views

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

6.1CVSS0.00218EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.11 views

PT-2026-5324

Name of the Vulnerable Software and Affected Versions tale versions 2.0.5 Description A Cross Site Scripting issue exists in tale version 2.0.5 that could allow an attacker to execute arbitrary code. Recommendations At the moment, there is no information about a newer version that contains a fix...

6.1CVSS6.1AI score0.00218EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/29 12:0 a.m.4 views

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

6.1AI score0.00218EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/01/29 12:0 a.m.5 views

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

6.1CVSS6.1AI score0.00218EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.8 views

Tale Blog Security Vulnerabilities

Tale Blog is a Java blog developed using the Tale Blog System, which is open-source. Version 2.0.5 of Tale Blog has a security vulnerability that can be exploited by cross-site scripting attacks...

6.1CVSS5.6AI score0.00218EPSS
Exploits1References2
CVE
CVE
added 2026/01/29 12:0 a.m.16 views

CVE-2025-69749

CVE-2025-69749 describes a Cross Site Scripting vulnerability in tale v2.0.5 . The public descriptions state an attacker can execute arbitrary code, but the connected documents do not provide concrete technical details (e.g., vulnerable component, root cause, affected files, or patch/version with...

6.1CVSS6.1AI score0.00218EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/01/29 12:0 a.m.5 views

EUVD-2025-206532

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

6.1CVSS6.1AI score0.00218EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/29 12:0 a.m.32 views

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

0.00218EPSS
Exploits1References2
OSV
OSV
added 2026/01/29 12:0 a.m.4 views

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

6.1CVSS5.9AI score0.00218EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.5 views

CVE-2025-1585

A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logourl leads to cross site scripting. The...

5.4CVSS6.2AI score0.00335EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2025/12/19 12:0 a.m.8 views

VulnCheck KEV: CVE-2024-55890

D-Tale is a visualizer for pandas data structures. Prior to version 3.16.1, users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. Users should upgrade to version 3.16.1 where the update-settings endpoint blocks the ability...

6.9CVSS6.5AI score0.01063EPSS
In wildExploits0References63
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-6665

Malicious code in bioql PyPI...

4.8CVSS4AI score0.00353EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6664

Malicious code in bioql PyPI...

7.5CVSS5.6AI score0.00839EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0283

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00711EPSS
Exploits0References5
Rows per page
Query Builder