Lucene search
K

321 matches found

Vulnrichment
Vulnrichment
added 2025/10/22 8:58 p.m.3 views

CVE-2025-62614 BookLore Media API Authentication Bypass

BookLore is a self-hosted web app for organizing and managing personal book collections. In versions 1.8.1 and prior, an authentication bypass vulnerability in the BookMediaController allows any unauthenticated user to access and download book covers, thumbnails, and complete PDF/CBX page content...

8.7CVSS6.7AI score0.00528EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.5 views

PT-2025-43409

Name of the Vulnerable Software and Affected Versions BookLore versions 1.8.1 and prior Description BookLore is a self-hosted web app for managing book collections. Versions prior to a recent update have an authentication bypass issue in the BookMediaController. This allows unauthenticated users ...

8.7CVSS6.6AI score0.00528EPSS
Exploits0References9
CVE
CVE
added 2025/10/15 5:23 a.m.10 views

CVE-2025-11176

CVE-2025-11176 affects the WordPress plugin “Quick Featured Images” (versions up to 13.7.2). The vulnerability is an Insecure Direct Object Reference (IDOR) in the qfi_set_thumbnail and qfi_delete_thumbnail AJAX actions caused by missing validation of a user-controlled key. This allows authentica...

4.3CVSS5.3AI score0.0022EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/15 5:23 a.m.4 views

EUVD-2025-34513

The Quick Featured Images plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 13.7.2 via the qfisetthumbnail and qfideletethumbnail AJAX actions due to missing validation on a user controlled key. This makes it possible for authenticated...

4.3CVSS5.2AI score0.0022EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-17816

Malware in sbrugna...

4.3CVSS7AI score0.00755EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-6230

Malware in sbrugna...

7.5CVSS6.4AI score0.01224EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-19344

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.0014EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-53759

Malicious code in bioql PyPI...

5.3CVSS9.1AI score0.00448EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7939

Malicious code in bioql PyPI...

4.3CVSS9AI score0.00186EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-42352

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00086EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-42353

Malicious code in bioql PyPI...

7.4CVSS7.4AI score0.00071EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-28274

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00948EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-51391

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00377EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-14734

Malicious code in bioql PyPI...

6.3CVSS7.2AI score0.00219EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-56892

Malicious code in bioql PyPI...

9.9CVSS9.1AI score0.00621EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31292

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.00243EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-8813

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00135EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-2204

Malicious code in bioql PyPI...

5.5CVSS6.5AI score0.00133EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/27 8:44 a.m.3 views

CVE-2025-60108

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Thumbnails all-in-one-thumbnailsBanner allows Blind SQL Injection.This issue affects LambertGroup - AllInOne - Banner with Thumbnails: from n/a...

8.5CVSS5.9AI score0.00243EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/26 9:52 a.m.4 views

WordPress LambertGroup - AllInOne - Banner with Thumbnails Plugin <= 3.8 - SQL Injection Vulnerability

WordPress LambertGroup - AllInOne - Banner with Thumbnails Plugin = 3.8 - SQL Injection Vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin LambertGroup - AllInOne - Banner with Thumbnails versions = 3.8...

8.5CVSS7.8AI score0.00243EPSS
Exploits0Affected Software1
Rows per page
Query Builder