9 matches found
EUVD-2024-51979
Malicious code in bioql PyPI...
CVE-2024-53484
Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard-coded JWT signing key...
CVE-2024-53484
Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard-coded JWT signing key...
CVE-2024-53484
Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard-coded JWT signing key...
CVE-2024-53484
Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard-coded JWT signing key...
CVE-2024-53484
CVE-2024-53484 affects Ever Traduora ≤0.20.0. Root cause: hard-coded JWT signing key leading to Privilege Escalation. Documented impact includes elevated privileges; no explicit patch/version remediation is provided in the supplied materials. Exploit details are not described beyond the key issue...
Ever Traduora Platform 安全漏洞
Ever Traduora Platform is an open translation management platform from Traduora, Inc. A security vulnerability exists in Ever Traduora Platform version 0.20.0 and earlier, which stems from the use of a hard-coded JWT signing key that could lead to elevated privileges...
CVE-2024-53484
Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard-coded JWT signing key...
Exposure of Sensitive Information to an Unauthorized Actor in traduora/traduora
Description Username Enumeration in traduora. Proof of Concept 1. setup traduora to reproduce the vulnerability 2. go to sign in page http://localhost:8080/login 3. Append non registered user email and password it shows Error,resource not found 4. when Appending correct username and fake password...