Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

17 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-17560

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.0014EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-54658

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00166EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/06/11 12:6 a.m.2 views

CVE-2024-46452

A Host Header injection vulnerability in the password reset function of VigyBag Open Source Online Shop commit 3f0e21b allows attackers to redirect victim users to a malicious site via a crafted URL...

6.1CVSS6.3AI score0.00166EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/11 12:6 a.m.3 views

CVE-2025-45002

Vigybag v1.0 and before is vulnerable to Cross Site Scripting XSS via the upload profile picture function under my profile...

5.4CVSS5.3AI score0.0014EPSS
Exploits1References1
NVD
NVDadded 2025/06/09 5:15 p.m.6 views

CVE-2025-45002

Vigybag v1.0 and before is vulnerable to Cross Site Scripting XSS via the upload profile picture function under my profile...

5.4CVSS0.0014EPSS
Exploits1References1
OSV
OSVadded 2025/06/09 5:15 p.m.0 views

CVE-2025-45002

Vigybag v1.0 and before is vulnerable to Cross Site Scripting XSS via the upload profile picture function under my profile...

5.4CVSS5.8AI score0.0014EPSS
Exploits1References1
NVD
NVDadded 2025/06/09 5:15 p.m.5 views

CVE-2024-46452

A Host Header injection vulnerability in the password reset function of VigyBag Open Source Online Shop commit 3f0e21b allows attackers to redirect victim users to a malicious site via a crafted URL...

6.1CVSS0.00166EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/06/09 12:0 a.m.2 views

CVE-2024-46452

A Host Header injection vulnerability in the password reset function of VigyBag Open Source Online Shop commit 3f0e21b allows attackers to redirect victim users to a malicious site via a crafted URL...

7.3AI score0.00166EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/06/09 12:0 a.m.8 views

CVE-2025-45002

Vigybag v1.0 and before is vulnerable to Cross Site Scripting XSS via the upload profile picture function under my profile...

0.0014EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/06/09 12:0 a.m.1 views

VigyBag Open Source Online Shop 安全漏洞

VigyBag Open Source Online Shop is an open source e-commerce platform from VigyBag India. A security vulnerability exists in VigyBag Open Source Online Shop that stems from a Host Header injection in the password reset function, which could result in a redirection to a malicious site...

6.1CVSS7.1AI score0.00166EPSS
Exploits0References4
CVE
CVEadded 2025/06/09 12:0 a.m.53 views

CVE-2024-46452

The CVE-2024-46452 entry concerns VigyBag Open Source Online Shop. A Host Header injection vulnerability exists in the password reset function, tied to commit 3f0e21b, enabling attackers to cause victims to be redirected to a malicious site via a crafted URL. The available sources describe the vu...

6.1CVSS7.3AI score0.00166EPSS
Exploits0References3
CVE
CVEadded 2025/06/09 12:0 a.m.38 views

CVE-2025-45002

CVE-2025-45002 affects Vigybag v1.0 and earlier, with an XSS vulnerability in the My Profile Upload Profile Picture feature. The issue concerns cross-site scripting via the profile image upload function. The provided details identify the affected software and the vulnerability class but do not sp...

5.4CVSS6.3AI score0.0014EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/06/09 12:0 a.m.3 views

CVE-2025-45002

Vigybag v1.0 and before is vulnerable to Cross Site Scripting XSS via the upload profile picture function under my profile...

6.3AI score0.0014EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/06/09 12:0 a.m.6 views

CVE-2024-46452

A Host Header injection vulnerability in the password reset function of VigyBag Open Source Online Shop commit 3f0e21b allows attackers to redirect victim users to a malicious site via a crafted URL...

0.00166EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/06/09 12:0 a.m.2 views

PT-2025-24540 · Unknown · Vigybag Open Source Online Shop

Name of the Vulnerable Software and Affected Versions: VigyBag Open Source Online Shop affected versions not specified Description: A Host Header injection issue in the password reset function allows attackers to redirect victim users to a malicious site via a crafted URL. Recommendations: At the...

6.1CVSS6.3AI score0.00166EPSS
Exploits0References7
CNNVD
CNNVDadded 2025/06/09 12:0 a.m.1 views

Vigybag 安全漏洞

Vigybag is an e-commerce platform by Vigybag India. A security vulnerability exists in Vigybag v1.0 and earlier versions, which stems from the Upload Profile Image feature in My Profile being vulnerable to cross-site scripting attacks...

5.4CVSS6AI score0.0014EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/06/09 12:0 a.m.1 views

PT-2025-24543 · Vigybag · Vigybag

Name of the Vulnerable Software and Affected Versions: Vigybag versions 1.0 and before Description: The issue is related to Cross Site Scripting XSS via the upload profile picture function under the user's profile. This allows for potential malicious script execution. No information is provided...

5.4CVSS5.7AI score0.0014EPSS
Exploits1References7
Rows per page
Query Builder