Lucene search
K

88 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-5670

Malware in sbrugna...

7.5CVSS7.6AI score0.01094EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-5689

Malware in sbrugna...

7.5CVSS7.6AI score0.01094EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-1936

Malware in sbrugna...

7.5CVSS9.2AI score0.02346EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-18797

Malware in sbrugna...

6.5CVSS6.6AI score0.00652EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-14355

Malware in sbrugna...

9.8CVSS9.5AI score0.00699EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-20995

Malware in sbrugna...

9.8CVSS8.7AI score0.01035EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-8306

Malware in sbrugna...

8.8CVSS8.7AI score0.00911EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-4363

Malicious code in bioql PyPI...

5.3CVSS7.3AI score0.02105EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19409

Malicious code in bioql PyPI...

9.6CVSS6.4AI score0.00405EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-2662

Malicious code in bioql PyPI...

9.4CVSS7.9AI score0.00461EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-26778

Malicious code in bioql PyPI...

9.4CVSS6.8AI score0.00461EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1961

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00811EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-21169

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00325EPSS
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/09/24 12:0 a.m.4 views

Domino Effect: How One Vendor's AI App Breach Toppled Giants

A single AI chatbot breach at Salesloft-Drift exposed data from 700+ companies, including security leaders. The attack shows how AI integrations expand risk, and why controls like IP allow-listing, token security, and monitoring are critical...

7.1AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/09/18 2:32 p.m.4 views

CVE-2025-10671 youth-is-as-pale-as-poetry e-learning JWT Token JwtUtils.java encryptSecret random values

A vulnerability has been found in youth-is-as-pale-as-poetry e-learning 1.0. Impacted is the function encryptSecret of the file e-learning-master\exam-api\src\main\java\com\yf\exam\ability\shiro\jwt\JwtUtils.java of the component JWT Token Handler. The manipulation leads to insufficiently random...

6.3CVSS4.2AI score0.00401EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.5 views

PT-2025-38404

Name of the Vulnerable Software and Affected Versions youth-is-as-pale-as-poetry e-learning version 1.0 Description A vulnerability exists due to insufficiently random values generated by the encryptSecret function within the JWT Token Handler component. The vulnerable file is...

6.3CVSS4.4AI score0.00401EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/09/09 7:32 p.m.4 views

CVE-2025-36011 IBM Jazz for Service Management information disclosure

IBM Jazz for Service Management 1.1.3.0 through 1.1.3.24 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References1
CVE
CVE
added 2025/07/24 10:23 p.m.31 views

CVE-2025-53940

CVE-2025-53940 affects Quiet, an open-source p2p chat alternative. Vulnerable in Quiet 6.1.0-alpha.4 and earlier due to an insecure, non-constant-time token verification comparison in the backend/frontend API, enabling a timing attack to guess the token character by character. The issue is resolv...

8.5CVSS6.2AI score0.02649EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/07/22 12:0 a.m.4 views

Building a Robust OAuth Token Based API Security: a High Level Overview

APIs Application Programming Interfaces or Web Services are the foundational building blocks that enable interconnected systems. However this proliferation of APIs has also introduced security challenges that require systematic and scalable solutions for secure authentication and authorization...

7AI score
Exploits0
OSV
OSV
added 2025/07/16 2:9 p.m.5 views

GHSA-7XWP-2CPP-P8R7 File Browser’s insecure JWT handling can lead to session replay attacks after logout

Summary File Browser’s authentication system issues long-lived JWT tokens that remain valid even after the user logs out. Please refer to the CWE's listed in this report for further reference and system standards. In summary, the main issue is: - Tokens remain valid after logout session replay...

8.7CVSS6.4AI score0.00498EPSS
Exploits1References4
Rows per page
Query Builder