Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-24054

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00109EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/09/16 12:0 a.m.1 views

TDuckCloud tduck-platform 安全漏洞

TDuckCloud tduck-platform is an open source form survey system from China's Zongda Numerical Wei TDuckCloud company. A security vulnerability exists in TDuckCloud tduck-platform version 5.1, which stems from a SQL injection vulnerability in the file upload module that could lead to the execution ...

9.8CVSS7.9AI score0.00902EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/08/11 3:35 p.m.6 views

CVE-2025-8756

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

8.8CVSS7.2AI score0.00109EPSS
Exploits1References1
NVD
NVDadded 2025/08/09 3:15 p.m.5 views

CVE-2025-8756

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

8.8CVSS0.00109EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/08/09 2:32 p.m.11 views

CVE-2025-8756 TDuckCloud tduck-platform manage preHandle improper authorization

A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical. Affected by this vulnerability is the function preHandle of the file /manage/ of the component com.tduck.cloud.api.web.interceptor.AuthorizationInterceptor. The manipulation leads to improper...

6.5CVSS0.00109EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/07/20 12:0 a.m.4 views

TDuckCloud tduck-platform 注入漏洞

TDuckCloud tduck-platform is an open source form survey system from China's Zhongda Numerical Wei TDuckCloud company. An injection vulnerability exists in TDuckCloud tduck-platform version 5.1, which stems from incorrect manipulation of the formKey parameter of the function UserFormDataMapper in...

9.8CVSS6.9AI score0.00216EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/07/20 12:0 a.m.2 views

PT-2025-30191 · Tduckcloud · Tduck-Platform

Name of the Vulnerable Software and Affected Versions: TDuckCloud tduck-platform version 5.1 Description: A critical issue exists in TDuckCloud tduck-platform 5.1 related to SQL injection. The UserFormDataMapper function within the src/main/java/com/tduck/cloud/form/mapper/UserFormDataMapper.java...

6.5CVSS6.8AI score0.00216EPSS
Exploits1References10
Rows per page
Query Builder