Lucene search
K

514 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2023-1022

Malicious code in bioql PyPI...

9.8CVSS6.8AI score0.00775EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-45369

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00463EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49734

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00853EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2022-3991

Malicious code in bioql PyPI...

7.5CVSS7.9AI score0.01903EPSS
Exploits1References3
OSV
OSV
added 2025/09/26 9:25 a.m.4 views

MAL-2025-47616 Malicious code in botframework-wechat (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/26 9:25 a.m.7 views

Malicious code in botframework-wechat (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
NVD
NVD
added 2025/09/25 12:15 p.m.6 views

CVE-2025-10943

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

5.1CVSS0.00233EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/25 12:2 p.m.7 views

CVE-2025-10943 MikeCen WeChat-Face-Recognition wx.php valid cross site scripting

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

5.1CVSS0.00233EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/25 12:2 p.m.2 views

CVE-2025-10943 MikeCen WeChat-Face-Recognition wx.php valid cross site scripting

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

5.1CVSS5.4AI score0.00233EPSS
Exploits0References4
CVE
CVE
added 2025/09/25 12:2 p.m.13 views

CVE-2025-10943

The CVE-2025-10943 entry concerns MikeCen WeChat-Face-Recognition, affecting the wx.php file’s valid function. The vulnerability arises from manipulating the echostr argument, enabling cross-site scripting. Exploitation is described as remote, with nothing indicating versioned releases or a publi...

5.1CVSS5.4AI score0.00233EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/25 12:0 a.m.7 views

PT-2025-39364

Name of the Vulnerable Software and Affected Versions MikeCen WeChat-Face-Recognition affected versions not specified Description A security flaw exists in MikeCen WeChat-Face-Recognition. The issue involves cross site scripting resulting from manipulation of the echostr argument within the valid...

5.1CVSS3.9AI score0.00233EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/09/25 12:0 a.m.6 views

WeChat-Face-Recognition 代码注入漏洞

WeChat-Face-Recognition is a WeChat admin platform face recognition program by Mike Cen, an individual developer. WeChat-Face-Recognition suffers from a code injection vulnerability that stems from a misuse of the parameter echostr in the file wx.php, which could lead to a cross-site scripting...

5.1CVSS4.9AI score0.00233EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-2617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic was found in OpenCV wechatqrcode Module up to 4.7.0. Affected by this vulnerability is the function...

7.5CVSS7.3AI score0.01356EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 12:0 a.m.4 views

CVE-2025-50902

Cross Site Request Forgery CSRF vulnerability in old-peanut Open-Shop aka old-peanut/wechatappletopensource thru 1.0.0 allows attackers to gain sensitive information via crafted HTTP Post message...

7.1AI score0.00223EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.6 views

PT-2025-34148 · Old Peanut · Open-Shop

Name of the Vulnerable Software and Affected Versions: old-peanut Open-Shop versions through 1.0.0 Description: A Cross Site Request Forgery CSRF issue exists in old-peanut Open-Shop, allowing attackers to obtain sensitive information via a crafted HTTP Post message. Recommendations: At the momen...

8.8CVSS6AI score0.00223EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.5 views

dts-mall 安全漏洞

dts-mall is a WeChat small program mall by qiguliuxing individual developer. A security vulnerability exists in dts-mall version v0.0.1-SNAPSHOT, which stems from improper access control and could lead to authentication bypass...

9.8CVSS6.8AI score0.00397EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-2618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as problematic, has been found in OpenCV wechatqrcode Module up to 4.7.0. Affected by this issue is the function...

7.5CVSS7.9AI score0.01303EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/08/14 6:52 p.m.5 views

jl-wechat-sdk (>=1.0.0 <=1.2.3) potentially affected by unknown CVE via crpyto-js (=0.0.1-security)

crpyto-js NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on crpyto-js and may be impacted: - jl-wechat-sdk =1.0.0, =1.2.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-17718...

5.8AI score
Exploits0
NVD
NVD
added 2025/08/09 7:15 p.m.10 views

CVE-2025-8764

A vulnerability classified as critical has been found in linlinjava litemall up to 1.8.0. Affected is the function Upload of the file /wx/storage/upload. The manipulation of the argument File leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclose...

6.5CVSS0.00223EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/03 12:0 a.m.19 views

wx-shop 安全漏洞

wx-shop is a WeChat applet simple mall by the individual developer Feng Zhihui 495300897. A security vulnerability exists in wx-shop, which stems from vulnerability to cross-site request forgery attacks...

5.3CVSS4.8AI score0.002EPSS
Exploits0References5
Rows per page
Query Builder