Lucene search
K

82 matches found

Vulnrichment
Vulnrichment
added 2025/10/27 3:13 p.m.6 views

CVE-2025-34133 Wimi Teamwork < v7.38.17 CSRF

Wimi Teamwork versions prior to 7.38.17 contains a cross-site request forgery CSRF vulnerability in its API. The API accepts any authenticated request that contains a JSON field named 'csrftoken' without validating the field’s value; only the presence of the field is checked. An attacker can craf...

7CVSS6.7AI score0.00231EPSS
Exploits0References3
CVE
CVE
added 2025/10/27 3:13 p.m.19 views

CVE-2025-34133

Wimi Teamwork

7CVSS6.7AI score0.00231EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.4 views

Wimi Teamwork 安全漏洞

Wimi Teamwork is a team collaboration cloud platform from Wimi USA. A security vulnerability exists in Wimi Teamwork versions prior to 7.38.17 that stems from the API not validating the csrftoken field value, which could lead to a cross-site request forgery attack...

7CVSS6.6AI score0.00231EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.8 views

PT-2025-43971

Name of the Vulnerable Software and Affected Versions Wimi Teamwork versions prior to 7.38.17 Description The software contains a cross-site request forgery CSRF issue in its API. The API accepts authenticated requests containing a JSON field named csrf token without validating its value, only...

7CVSS6.9AI score0.00231EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-6329

Malware in sbrugna...

8.8CVSS8.8AI score0.03516EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-4409

Malware in sbrugna...

10CVSS6.4AI score0.01375EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-6328

Malware in sbrugna...

8.8CVSS8.8AI score0.03516EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-6327

Malware in sbrugna...

8.8CVSS8.8AI score0.03516EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-44239

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00203EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-44238

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00298EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2025/06/06 12:58 p.m.8 views

Cultivating Growth and Development at Rapid7

At Rapid7, we’re pushing the boundaries on what a cybersecurity company can be as we work to build a more secure digital future. In a field where the threat landscape continues to evolve, continuous learning and the development of our people becomes an engine for company success and innovation...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.6 views

CVE-2023-3589

A Cross-Site Request Forgery CSRF vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x could allow with some very specific conditions an attacker to send a specifically crafted query to the server...

7.5CVSS7AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.7 views

CVE-2023-3588

A stored Cross-site Scripting XSS vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x allows an attacker to execute arbitrary script code...

5.4CVSS6.1AI score0.00298EPSS
Exploits0
Talos Blog
Talos Blog
added 2025/05/22 6:0 p.m.13 views

Ghosted by a cybercriminal

Welcome to this week's edition of the Threat Source newsletter. Talos recently published research into how threat actors are increasingly teaming up across the attack chain. Each group handles a slice of the operation, passing the breach along like a relay baton. It's a concerning trend -- one th...

8.8CVSS9.2AI score0.28261EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 9:46 p.m.7 views

CVE-2005-4414

Unspecified vulnerability in Teamwork 3 before alpha 1.7 has unknown impact and attack vectors, related to "a menu security bug."...

10CVSS7AI score0.01375EPSS
Exploits0References1
Talos Blog
Talos Blog
added 2024/07/31 11:55 a.m.11 views

"There is no business school class that would ever sit down and design Talos"

As part of the celebrations of Cisco Talos turning 10, wed like to take you back to where it all began: How we formed our mission of protecting our customers and making the internet suck a bit less, an insight into our culture, and how we came to work with some of the most talented human beings o...

7.1AI score
Exploits0
HackRead
HackRead
added 2024/04/15 7:49 p.m.11 views

Collaborative Scheduling: Enhancing Team Coordination With Open-Source Tools

By Uzair Amir In the rapidly evolving work environment of today, collaborative scheduling stands out as a foundational pillar for effective… This is a post from HackRead.com Read the original post: Collaborative Scheduling: Enhancing Team Coordination With Open-Source Tools...

7.4AI score
Exploits0
OSV
OSV
added 2023/10/09 9:15 a.m.3 views

CVE-2023-3589

A Cross-Site Request Forgery CSRF vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x could allow with some very specific conditions an attacker to send a specifically crafted query to the server...

7.5CVSS5.8AI score0.00203EPSS
Exploits0References1
NVD
NVD
added 2023/10/09 9:15 a.m.24 views

CVE-2023-3589

A Cross-Site Request Forgery CSRF vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x could allow with some very specific conditions an attacker to send a specifically crafted query to the server...

7.5CVSS6.8AI score0.00203EPSS
Exploits0References1
Prion
Prion
added 2023/10/09 9:15 a.m.18 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CSRF vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x could allow with some very specific conditions an attacker to send a specifically crafted query to the server...

5.1CVSS7.6AI score0.00203EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder