Lucene search
K

58 matches found

Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.7 views

PT-2026-24087

Name of the Vulnerable Software and Affected Versions linagora Twake version 2023.Q1.1223 Description An issue exists due to improper neutralization of input during web page generation, which allows attackers to execute arbitrary code. This is a Cross-Site Scripting XSS issue. Recommendations At...

6AI score0.00343EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/03/09 12:0 a.m.4 views

CVE-2025-70038

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in linagora Twake v2023.Q1.1223. This allows attackers to execute arbitrary code...

6AI score0.00343EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/09 12:0 a.m.2 views

CVE-2025-70038

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in linagora Twake v2023.Q1.1223. This allows attackers to execute arbitrary code...

6AI score0.00343EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/09 12:0 a.m.6 views

CVE-2025-70037

An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora Twake v2023.Q1.1223. This allows attackers to obtain sensitive information and execute arbitrary code...

6AI score0.00206EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.18 views

PT-2026-24088

An issue pertaining to CWE-78: Improper Neutralization of Special Elements used in an OS Command was discovered in linagora Twake v2023.Q1.1223...

5.8AI score0.0038EPSS
Exploits0References3
CVE
CVE
added 2026/03/09 12:0 a.m.17 views

CVE-2025-70038

CVE-2025-70038 affects linagora Twake v2023.Q1.1223. The issue is CWE-79 (Improper Neutralization of Input During Web Page Generation) enabling arbitrary code execution. Reported across multiple feeds (Red Hat, NVD, CIRCL, ENISA EUVD) with CVSSv3.1 base score 8.8 ( HIGH; AV:N/AC:L/PR:N/UI:R/S:U/C...

8.8CVSS6AI score0.00343EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/03/09 12:0 a.m.18 views

CVE-2025-70037

CVE-2025-70037 affects linagora Twake v2023.Q1.1223 and is tied to CWE-601 (URL Redirection to Untrusted Site). The Red Hat, NVD, CIRCL, EUVD, and other connected records confirm the vulnerability and describe the impact as allowing attackers to obtain sensitive information and to execute arbitra...

6.1CVSS6AI score0.00206EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/09 12:0 a.m.31 views

CVE-2025-70037

An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora Twake v2023.Q1.1223. This allows attackers to obtain sensitive information and execute arbitrary code...

0.00206EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/09 12:0 a.m.30 views

CVE-2025-70038

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in linagora Twake v2023.Q1.1223. This allows attackers to execute arbitrary code...

0.00343EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/09 12:0 a.m.30 views

CVE-2025-70039

An issue pertaining to CWE-78: Improper Neutralization of Special Elements used in an OS Command was discovered in linagora Twake v2023.Q1.1223...

0.0038EPSS
Exploits0References3
OSV
OSV
added 2026/03/09 12:0 a.m.7 views

CVE-2025-70039

An issue pertaining to CWE-78: Improper Neutralization of Special Elements used in an OS Command was discovered in linagora Twake v2023.Q1.1223...

9.8CVSS5.8AI score0.0038EPSS
Exploits0References5
OSV
OSV
added 2026/03/09 12:0 a.m.4 views

CVE-2025-70037

An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora Twake v2023.Q1.1223. This allows attackers to obtain sensitive information and execute arbitrary code...

6.1CVSS6AI score0.00206EPSS
Exploits0References5
OSV
OSV
added 2026/03/09 12:0 a.m.4 views

CVE-2025-70038

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in linagora Twake v2023.Q1.1223. This allows attackers to execute arbitrary code...

8.8CVSS6.1AI score0.00343EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2023-12133

Malicious code in bioql PyPI...

5.7CVSS5.5AI score0.40916EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-23893

Malicious code in bioql PyPI...

9.8CVSS7.9AI score0.0062EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:40 a.m.11 views

CVE-2023-0028

Cross-site Scripting XSS - Stored in GitHub repository linagora/twake prior to 2023.Q1.1200+...

5.7CVSS6AI score0.40916EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:29 a.m.6 views

CVE-2023-2675

Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 2023.Q1.1223...

9.8CVSS6.8AI score0.00591EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:1 a.m.5 views

CVE-2023-1665

Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 0.0.0...

9.8CVSS6.7AI score0.0062EPSS
Exploits1References1
NVD
NVD
added 2023/11/07 4:13 a.m.18 views

CVE-2023-2675

Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 2023.Q1.1223...

9.8CVSS6.6AI score0.00591EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/11/06 12:0 a.m.5 views

Twake Security Vulnerability

Twake is a secure open source collaboration platform open-sourced by LINAGORA that improves organizational productivity. A security vulnerability exists in versions prior to Twake 2023.Q1.1223 that stems from an improper restriction of too many authentication attempts...

9.8CVSS6.9AI score0.00591EPSS
Exploits1References2
Rows per page
Query Builder