Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-1279

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00591EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2023/04/28 2:15 p.m.1 views

CVE-2023-28473

Concrete CMS previously concrete5 versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to possible Auth bypass in the jobs section...

3.3CVSS5.9AI score0.00755EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/04/28 2:15 p.m.5 views

CVE-2023-28472

Concrete CMS previously concrete5 versions 8.5.12 and below, and 9.0 through 9.1.3 does not have Secure and HTTP only attributes set for ccmPoll cookies...

5.3CVSS5.9AI score0.00591EPSS
Exploits0References4
NVD
NVD
added 2023/04/28 2:15 p.m.13 views

CVE-2023-28475

Concrete CMS previously concrete5 versions 8.5.12 and below, and versions 9.0 through 9.1.3 is vulnerable to Reflected XSS on the Reply form because msgID was not sanitized...

6.1CVSS6AI score0.00642EPSS
Exploits0References3
OSV
OSV
added 2023/04/28 2:15 p.m.5 views

CVE-2023-28473

Concrete CMS previously concrete5 versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to possible Auth bypass in the jobs section...

3.3CVSS6.9AI score
Exploits0References3
OSV
OSV
added 2023/04/28 2:15 p.m.4 views

CVE-2023-28477

Concrete CMS previously concrete5 versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to stored XSS on API Integrations via the name parameter...

5.4CVSS6.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/28 12:0 a.m.7 views

PT-2023-21743 · Unknown · Concrete Cms

Name of the Vulnerable Software and Affected Versions: Concrete CMS previously concrete5 versions 8.5.12 and below Concrete CMS previously concrete5 versions 9.0 through 9.1.3 Description: The issue concerns a possible Auth bypass in the jobs section of Concrete CMS. Recommendations: For versions...

9.8CVSS3.8AI score0.00755EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2023/04/28 12:0 a.m.4 views

PT-2023-21742 · Unknown · Concrete Cms

Name of the Vulnerable Software and Affected Versions: Concrete CMS previously concrete5 versions 8.5.12 and below Concrete CMS previously concrete5 versions 9.0 through 9.1.3 Description: The issue is related to the ccmPoll cookies in Concrete CMS, where the Secure and HTTP only attributes are n...

5.3CVSS5AI score0.00591EPSS
Exploits0References14
CNVD
CNVD
added 2017/04/13 12:0 a.m.3 views

Apache Tomcat Denial of Service Vulnerability (CNVD-2017-05203)

Apache Tomcat is the United States Apache Apache Software Foundation under the Jakarta project of a lightweight Web application server, which is mainly used for the development and debugging of JSP programs for small and medium-sized systems. A denial-of-service vulnerability exists in Apache...

7.5CVSS8AI score0.08275EPSS
Exploits0References1
Rows per page
Query Builder