Lucene search
K
EuvdMost viewed

417920 matches found

EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2025-18638

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.0028EPSS
Exploits0References1
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2025-21120

Malicious code in bioql PyPI...

2.3CVSS6.3AI score0.00278EPSS
Exploits0References1
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2023-53998

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.05177EPSS
Exploits4References3
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2022-0497

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0165EPSS
Exploits0References6
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2023-33895

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00335EPSS
Exploits2References3
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2025-10546

Malicious code in bioql PyPI...

6.9CVSS6.3AI score0.0027EPSS
Exploits0References3
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2021-30806

Malicious code in bioql PyPI...

7.2CVSS6.9AI score0.02225EPSS
Exploits0References1
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2023-54736

Malicious code in bioql PyPI...

9.8CVSS8.7AI score0.00752EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2025-23157

Malicious code in bioql PyPI...

6.9CVSS7.4AI score0.00384EPSS
Exploits0References6
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2025-27262

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00275EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2022-35844

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.01983EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2024-30310

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00317EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2022-43204

Malicious code in bioql PyPI...

4.5CVSS5AI score0.00353EPSS
Exploits0References1
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2023-50564

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00557EPSS
Exploits4References3
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2023-28803

Malicious code in bioql PyPI...

5CVSS4.9AI score0.00524EPSS
Exploits1References3
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2024-47276

Malicious code in bioql PyPI...

6.3CVSS4.8AI score0.00605EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•30 views

EUVD-2024-30434

Malicious code in bioql PyPI...

6.6CVSS6.6AI score0.00226EPSS
Exploits0References1
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2025-17026

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00433EPSS
Exploits1References5
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•30 views

EUVD-2025-18212

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00205EPSS
Exploits0References3
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2022-6481

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.00414EPSS
Exploits1References6
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•29 views

EUVD-2022-3811

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01525EPSS
Exploits0References12
EUVD
EUVD
•added 2023/07/12 5:31 p.m.•30 views

EUVD-2023-44287

A vulnerability was found in Boss Mini 1.4.0 Build 6221. It has been classified as critical. This affects an unknown part of the file boss/servlet/document. The manipulation of the argument path leads to file inclusion. It is possible to initiate the attack remotely. The exploit has been disclose...

9.8CVSS7.3AI score0.75206EPSS
Exploits6References3
EUVD
EUVD
•added 2026/05/27 7:18 a.m.•28 views

EUVD-2025-209952

The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root...

8.8CVSS6.4AI score0.00218EPSS
Exploits0References1
EUVD
EUVD
•added 2026/05/18 6:57 p.m.•28 views

EUVD-2026-30796

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References4
EUVD
EUVD
•added 2026/05/18 12:31 a.m.•28 views

EUVD-2026-30709

A vulnerability was detected in Kilo-Org kilocode up to 7.0.47. This vulnerability affects the function Bun.file of the file packages/opencode/src/kilocode/review/worktree-diff.ts of the component File Diff API Endpoint. Performing a manipulation of the argument File results in path traversal. It...

5.3CVSS5.5AI score0.0058EPSS
Exploits1References5
EUVD
EUVD
•added 2026/05/15 6:46 p.m.•28 views

EUVD-2026-30584

Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, the checkout endpoint accepts a user-controlled cartid and uses it to enter the payment flow without verifying cart ownership. A logged-in attacker can therefore reuse another...

7.6CVSS5.8AI score0.002EPSS
Exploits0References1
EUVD
EUVD
•added 2026/05/15 7:46 a.m.•28 views

EUVD-2026-30520

The Notify Odoo plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.1. This is due to missing or incorrect nonce validation on the updateSettings function. This makes it possible for unauthenticated attackers to change the Notify Odoo URL to ...

4.3CVSS5.7AI score0.00135EPSS
Exploits0References8
EUVD
EUVD
•added 2026/05/13 6:30 p.m.•28 views

EUVD-2026-30009

Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell tmsh arp and ndp commands, and in BIG-IP iControl REST. These vulnerabilities may allow an authenticated attacker to view adjacent network information. Note: Software versions which have reached End of Technical...

7.1CVSS5.8AI score0.00203EPSS
Exploits0References2
EUVD
EUVD
•added 2026/05/13 12:48 a.m.•29 views

EUVD-2026-29886

The MonsterInsights – Google Analytics Dashboard for WordPress Website Stats Made Easy plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability checks on the getadsaccesstoken and resetexperience functions in all versions up to, and including,...

7.1CVSS5.8AI score0.00349EPSS
Exploits0References5
EUVD
EUVD
•added 2026/05/12 6:30 p.m.•28 views

EUVD-2026-29600

Double free in Windows Link-Layer Discovery Protocol LLDP allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00199EPSS
Exploits0References2
EUVD
EUVD
•added 2026/05/12 9:31 a.m.•28 views

EUVD-2026-29401

The Quick Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'style' attribute of the 'qtbl' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS6AI score0.00187EPSS
Exploits0References4
EUVD
EUVD
•added 2026/05/12 9:31 a.m.•28 views

EUVD-2026-29398

The Fancy Image Show plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's fancy-img-show shortcode in all versions up to, and including, 9.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

6.4CVSS6AI score0.00243EPSS
Exploits0References5
EUVD
EUVD
•added 2026/05/08 3:31 p.m.•28 views

EUVD-2026-28701

In the Linux kernel, the following vulnerability has been resolved: drm/xe/sync: Cleanup partially initialized sync on parse failure xesyncentryparse can allocate references syncobj, fence, chain fence, or user fence before hitting a later failure path. Several of those paths returned directly,...

5.8AI score0.00122EPSS
Exploits0References5
EUVD
EUVD
•added 2026/05/08 12:31 a.m.•28 views

EUVD-2026-28464

A server-side request forgery SSRF vulnerability was identified in the GitHub Enterprise Server notebook viewer that allowed an attacker to access internal services by exploiting URL parser confusion between the validation layer and the HTTP request library. The hostname validation used a differe...

7.9CVSS5.8AI score0.00377EPSS
Exploits0References6
EUVD
EUVD
•added 2026/05/07 9:30 p.m.•28 views

EUVD-2026-28417

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

4.8CVSS5.4AI score0.00264EPSS
Exploits1References10
EUVD
EUVD
•added 2026/05/07 9:31 a.m.•28 views

EUVD-2025-209716

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPMart Team Member allows Blind SQL Injection. This issue affects Team Member: from n/a through 8.5...

7.6CVSS5.8AI score0.0022EPSS
Exploits0References2
EUVD
EUVD
•added 2026/05/07 3:53 a.m.•28 views

EUVD-2026-28248

The base directory spring.cloud.config.server.git.basedir used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use TOCTOU attacks. Spring Cloud Config 3.1.x: affected from 3.1.0 through 3.1.13 inclusive; upgrade to 3.1.14 or greater Enterpris...

7.2CVSS5.8AI score0.0022EPSS
Exploits0References1
EUVD
EUVD
•added 2026/05/05 6:33 p.m.•28 views

EUVD-2026-27390

A flaw has been found in chatchat-space Langchain-Chatchat up to 0.3.1.3. This issue affects the function PIL.Image.tobytes of the file libs/chatchat-server/chatchat/webuipages/dialogue/dialogue.py of the component Vision Chat Paste Image Handler. This manipulation of the argument...

2.6CVSS5.1AI score0.0014EPSS
Exploits0References7
EUVD
EUVD
•added 2026/05/03 1:30 p.m.•28 views

EUVD-2026-26836

A vulnerability was identified in Tiandy Easy7 Integrated Management Platform 7.17.0. Affected by this vulnerability is an unknown functionality of the file /Easy7/rest/systemInfo/updateDbBackupInfo. Such manipulation of the argument week leads to os command injection. The attack can be executed...

7.5CVSS6.9AI score0.01655EPSS
Exploits0References4
EUVD
EUVD
•added 2026/05/02 10:0 p.m.•28 views

EUVD-2026-26802

A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function gettokenizer of the file python/sglang/srt/utils/hftransformersutils.py of the component HuggingFace Transformer Handler. The manipulation results in deserialization. The attack can be executed remotely. A hi...

6.3CVSS5.3AI score0.00368EPSS
Exploits0References3
EUVD
EUVD
•added 2026/04/09 3:35 p.m.•28 views

EUVD-2026-20894

HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and package...

7.5CVSS6AI score0.00583EPSS
Exploits1References2
EUVD
EUVD
•added 2026/01/21 12:31 a.m.•28 views

EUVD-2026-3529

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

7.5CVSS5.4AI score0.00198EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/22 9:36 p.m.•28 views

EUVD-2025-35625

pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires parsing the content stream of a page which has an inline image using the DCTDecode filter. This has been fixed in...

8.7CVSS6.3AI score0.00402EPSS
Exploits0References5
EUVD
EUVD
•added 2025/10/17 5:11 p.m.•29 views

EUVD-2025-34919

DataEase is a data visualization and analytics platform. In DataEase versions through 2.10.13, a JDBC URL injection vulnerability exists in the DB2 and MongoDB data source configuration handlers. In the DB2 data source handler, when the extraParams field is empty, the HOSTNAME, PORT, and DATABASE...

9.8CVSS6.7AI score0.07306EPSS
Exploits2References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•28 views

EUVD-2021-21472

Malware in sbrugna...

7.5CVSS7.4AI score0.00616EPSS
Exploits1References7
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•28 views

EUVD-2020-4557

Malware in sbrugna...

7.8CVSS7.5AI score0.01088EPSS
Exploits4References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•28 views

EUVD-2020-18810

Malware in sbrugna...

7.5CVSS7.8AI score0.01031EPSS
Exploits0References3
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•28 views

EUVD-2021-13814

Malware in sbrugna...

7.8CVSS7.5AI score0.00876EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•28 views

EUVD-2020-28714

Malware in sbrugna...

9.1CVSS8.8AI score0.0199EPSS
Exploits0References3
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•28 views

EUVD-2021-14575

Malware in sbrugna...

6.5CVSS6.4AI score0.01122EPSS
Exploits0References6
Total number of security vulnerabilities5000