Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-0825

Malware in sbrugna...

5CVSS6.4AI score0.02873EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-5899

Malware in sbrugna...

4.4CVSS5AI score0.00405EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-4489

Malware in sbrugna...

8.8CVSS8.8AI score0.07864EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-19128

Malware in sbrugna...

6.1CVSS6.3AI score0.00988EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-29637

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0161EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-24086

Malicious code in bioql PyPI...

9.4CVSS7.6AI score0.00341EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:37 a.m.9 views

CVE-2024-9329

In Eclipse Glassfish versions before 7.0.17, The Host HTTP parameter could cause the web application to redirect to the specified URL, when the requested endpoint is '/management/domain'. By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal...

6.9CVSS6.7AI score0.00661EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:31 a.m.10 views

CVE-2024-7941

An HTTP parameter may contain a URL value and could cause the web application to redirect the request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials...

4.3CVSS6.8AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:22 p.m.7 views

CVE-2021-24406

The wpForo Forum WordPress plugin before 1.9.7 did not validate the redirectto parameter in the login form of the forum, leading to an open redirect issue after a successful login. Such issue could allow an attacker to induce a user to use a login URL redirecting to a website under their control...

6.1CVSS6.6AI score0.03379EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/03/20 10:9 a.m.16 views

CVE-2024-11044 Open Redirect in automatic1111/stable-diffusion-webui

An open redirect vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This vulnerability can be exploited to conduct phishing attacks, distribute malware, and steal user...

6.1CVSS0.00816EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2024/12/30 10:40 a.m.6 views

When Good Extensions Go Bad: Takeaways from the Campaign Targeting Browser Extensions

News has been making headlines over the weekend of the extensive attack campaign targeting browser extensions and injecting them with malicious code to steal user credentials. Currently, over 25 extensions, with an install base of over two million users, have been found to be compromised, and...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/27 11:30 a.m.5 views

Latest Multi-Stage Attack Scenarios with Real-World Examples

Multi-stage cyber attacks, characterized by their complex execution chains, are designed to avoid detection and trick victims into a false sense of security. Knowing how they operate is the first step to building a solid defense strategy against them. Let's examine real-world examples of some of...

7.4AI score
Exploits0
Vulnrichment
Vulnrichment
added 2023/01/10 7:54 p.m.8 views

CVE-2022-4636

Black Box KVM Firmware version 3.4.31307 on models ACR1000A-R-R2, ACR1000A-T-R2, ACR1002A-T, ACR1002A-R, and ACR1020A-T is vulnerable to path traversal, which may allow an attacker to steal user credentials and other sensitive information through local file inclusion...

7.5CVSS6.3AI score0.00876EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/14 11:49 a.m.31 views

Security Bulletin: Vulnerabilities in Curl affect PowerSC (CVE-2021-22876 and CVE-2021-22890)

Summary There are vulnerabilities in Curl that affect PowerSC. Vulnerability Details CVEID: CVE-2021-22876 DESCRIPTION: cURL libcurl could allow a remote attacker to obtain sensitive information, caused by the failure to strip off user credentials from the URL when automatically populating the...

5.3CVSS0.4AI score0.05301EPSS
Exploits2Affected Software1
NVD
NVD
added 2021/03/31 2:15 p.m.16 views

CVE-2021-23984

A malicious extension could have opened a popup window lacking an address bar. The title of the popup lacking an address bar should not be fully controllable, but in this situation was. This could have been used to spoof a website and attempt to trick the user into providing credentials. This...

6.5CVSS0.01113EPSS
Exploits0References4
NVD
NVD
added 2020/10/22 2:15 p.m.21 views

CVE-2020-27646

Biscom Secure File Transfer SFT before 5.1.1082 and 6.x before 6.0.1011 allows user credential theft...

6.5CVSS0.01004EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/22 1:27 p.m.21 views

CVE-2020-27646

Biscom Secure File Transfer SFT before 5.1.1082 and 6.x before 6.0.1011 allows user credential theft...

6.5AI score0.01004EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/16 5:10 a.m.26 views

CVE-2020-26584

An issue was discovered in Sage DPW 202006x before 202006002. The search field "Kurs suchen" on the page Kurskatalog is vulnerable to Reflected XSS. If the attacker can lure a user into clicking a crafted link, he can execute arbitrary JavaScript code in the user's browser. The vulnerability can ...

6.4AI score0.0091EPSS
Exploits1References3
ThreatPost
ThreatPost
added 2020/03/18 1:0 p.m.24 views

The Coronavirus is Already Taking Effect on Cyber Security– This is How CISOs Should Prepare

The Coronavirus is hitting hard on the world’s economy, creating a high volume of uncertainty within organizations. Cynet has revealed new data, showing that the Coronavirus now has a significant impact on information security and that the crisis is actively exploited by threat actors. In light o...

Exploits0References8
Exploit DB
Exploit DB
added 2014/09/25 12:0 a.m.45 views

Cart Engine 3.0 - Multiple Vulnerabilities

=== Details === Quantum Leap Advisory: http://www.quantumleap.it/cart-engine-3-0-multiple-vulnerabilities-sql-injection-reflected-xss-open-redirect/ Affected Product: Cart Engine Version: 3.0 === Executive Summary === SQL Injection: Using a specially crafted HTTP request, it is possible to exploi...

7AI score
Exploits0
Rows per page
Query Builder