Lucene search
K
EuvdMost viewed

417604 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2022-3491

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.04425EPSS
Exploits3References16
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2022-5499

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00798EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2022-25164

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.00342EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2023-27648

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00352EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2024-0989

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.01381EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2024-3184

Malicious code in bioql PyPI...

10CVSS6.3AI score0.00535EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2023-34771

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.05343EPSS
Exploits4References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2023-12628

Malicious code in bioql PyPI...

6.1CVSS7AI score0.00458EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2025-30918

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.00201EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.24 views

EUVD-2025-16371

Malicious code in bioql PyPI...

9.4CVSS6.3AI score0.1172EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2025-19700

Malicious code in bioql PyPI...

2CVSS6.6AI score0.0044EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2023-1449

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00655EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2025-25572

Malicious code in bioql PyPI...

6.4AI score0.00143EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/26 9:48 p.m.22 views

EUVD-2026-31658

Cargo crates in third party registries can override the cached source of other crates...

6.5CVSS5.8AI score0.00294EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/09 8:33 p.m.22 views

EUVD-2026-35829

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

8.4CVSS6.2AI score0.00555EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 6:30 p.m.22 views

EUVD-2026-35698

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

6.5CVSS5.5AI score0.00622EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/09 5:6 p.m.22 views

EUVD-2026-35751

Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network...

9.8CVSS6AI score0.011EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:6 p.m.22 views

EUVD-2026-35725

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Telephony Service allows an authorized attacker to elevate privileges locally...

7CVSS5.6AI score0.00205EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:5 p.m.22 views

EUVD-2026-35587

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally...

7.8CVSS6AI score0.00445EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:5 p.m.22 views

EUVD-2026-35579

External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute code over a network...

9.8CVSS5.7AI score0.00753EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/08 3:46 p.m.22 views

EUVD-2026-35160

In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl processing Tony Asleson using Claude found a buffer overflow in dm-ioctl in the function retrievestatus: 1. The code in retrievestatus checks that the output string fits into the output buffer a...

5.8AI score0.00195EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/02 12:31 a.m.22 views

EUVD-2026-33774

In multiple functions of ubsanthrowingruntime.cpp, there is a possible persistent denial of service due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6AI score0.00074EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/01 9:3 a.m.22 views

EUVD-2026-33610

SOPlanning is vulnerable to Stored Cross-Site Scripting XSS via /process/uploadbackup endpoint. An authenticated attacker with access to the backup functionality can upload a crafted ZIP archive containing a malicious user.csv file with embedded JavaScript. The injected code is executed in the...

8.8CVSS5.9AI score0.00295EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/01 4:0 a.m.22 views

EUVD-2026-33555

A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function sanitizeenvlines of the file hermescli/config.py. The manipulation results in injection. It is possible to launch the attack remotely. The attack requires a high level of...

6.3CVSS5.2AI score0.00266EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/30 3:32 p.m.22 views

EUVD-2026-33466

Text::LineFold versions through 2019.001 for Perl duplicate the output based on the number of special break characters. Text::LineFold splits the input string by specific line break characters such as VT, FF and others into segments, but applies the break function to the entire string, not just t...

5.8AI score0.002EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/30 2:55 p.m.22 views

EUVD-2018-21945

Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a malicious buffer of 700 bytes into the IP address or domain input field to trigger a denial of service condition...

6.9CVSS6AI score0.0014EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/30 12:13 p.m.22 views

EUVD-2026-33459

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

5.8AI score0.00123EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/28 3:45 p.m.22 views

EUVD-2026-32929

Due to improper enforcement of authentication rate-limiting on a debug SSH service in Archer C64 v1, the SSH service allows unlimited authentication attempts and uses the same credentials as the web interface. This enables an attacker to brute-force valid credentials via SSH. Successful...

8.7CVSS5.8AI score0.0051EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/28 4:42 a.m.22 views

EUVD-2026-32718

A flaw was found in Keycloak. A remote attacker with high privileges, such as a realm administrator configuring a malicious Lightweight Directory Access Protocol LDAP server or an attacker compromising an upstream LDAP server, could exploit this vulnerability. By sending a malformed LDAP password...

4.9CVSS5.8AI score0.00476EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/27 2:54 p.m.22 views

EUVD-2026-32542

go-git is an extensible git implementation library written in pure Go. Prior to 5.19.0 and 6.0.0-alpha.3, go-git may parse malformed Git objects in a way that differs from upstream Git. When commit or tag objects contain ambiguous or malformed headers, go-git’s decoded representation may expose...

7CVSS5.8AI score0.00159EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/27 12:56 p.m.22 views

EUVD-2026-32402

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone governor cleanup issues If thermalzonedeviceregisterwithtrips fails after adding a thermal governor to the thermal zone being registered, the governor is not removed from it as appropriate which ma...

5.8AI score0.00119EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/26 8:36 p.m.22 views

EUVD-2026-31992

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the Image directive plugin validates the :width: and :height: options with a regex compiled as numre = re.compiler"^\d+?:.\d?". When the validated value is not a plain integer, renderblockimage inserts it directly int...

4.7CVSS5.8AI score0.00228EPSS
Exploits1References2
EUVD
EUVD
added 2026/05/26 2:38 p.m.22 views

EUVD-2026-31846

Files or Directories Accessible to External Parties, Server-Side Request Forgery SSRF vulnerability in Apache Flink Kubernetes Operator. The FlinkSessionJob jarURI is currently not validated so that it points to user-owned files or addresses. This lets a user with CR create permissions read files...

5.8AI score0.0049EPSS
Exploits3References1
EUVD
EUVD
added 2026/05/25 7:45 a.m.22 views

EUVD-2026-31649

A vulnerability was determined in Edimax BR-6675nD 1.12. Affected is the function stainfo of the file /goform/stainfo. This manipulation of the argument interface causes command injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized...

6.5CVSS6.4AI score0.01158EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/25 7:30 a.m.22 views

EUVD-2026-31647

A vulnerability was found in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file courseDel.php. The manipulation of the argument ID results in improper control of resource identifiers. The attack may be performed from...

5.5CVSS5.7AI score0.00324EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/24 9:0 a.m.22 views

EUVD-2026-31581

A security flaw has been discovered in NousResearch hermes-agent 2026.4.23. Affected is the function discoverdashboardplugins of the file hermescli/webserver.py of the component CLI web-dashboard Interface. Performing a manipulation of the argument HERMESENABLEPROJECTPLUGINS results in incorrect...

5.3CVSS5.7AI score0.00228EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/17 7:30 a.m.22 views

EUVD-2026-30688

A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impacted is the function TradeOrderController.pay/TradePaymentController.pay/AccountGatewayComponent.pay of the file publiccms-trade/src/main/java/com/publiccms/controller/web/trade/TradeOrderController.java of the...

6.9CVSS6.1AI score0.00331EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/17 6:15 a.m.22 views

EUVD-2026-30685

A security flaw has been discovered in Oinone Pamirs up to 7.2.0. This vulnerability affects the function request.getParameter of the file LocalFileClient.java of the component RestController. Performing a manipulation of the argument uniqueFileName results in path traversal. The attack may be...

4.3CVSS5.4AI score0.00216EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/17 4:30 a.m.22 views

EUVD-2026-30682

A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS6.9AI score0.00261EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/17 2:27 a.m.22 views

EUVD-2026-30678

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in version 3.4.9. This is due to missing WordPress capability enforcement in the MCP OAuth bearer-token authorization path, where any valid OAuth token causes MCP access to be...

8.8CVSS5.8AI score0.00359EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/16 12:31 a.m.22 views

EUVD-2026-30666

Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage...

5.8AI score0.00355EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/15 7:30 p.m.22 views

EUVD-2026-30613

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the POST /api/v1/models/import endpoint allows users with the workspace.modelsimport permission to overwrite any existing model in the database, regardless of ownership. When an...

6.5CVSS5.8AI score0.0029EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 4:41 p.m.22 views

EUVD-2026-30568

Tabby formerly Terminus is a highly configurable terminal emulator. Prior to 1.0.233, Tabby registers itself as the handler for the tabby:// URL scheme on all platforms. The URL scheme handler supports a run command that directly executes OS commands with no user confirmation, sanitization, or...

9.4CVSS5.9AI score0.0038EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 2:58 a.m.22 views

EUVD-2024-55588

Improper verification of cryptographic signature in the Radeon RGB tool could allow a malicious file placed in the installation directory to be run with elevated privileges potentially leading to arbitrary code execution...

7CVSS6.1AI score0.00082EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/15 1:53 a.m.22 views

EUVD-2025-209874

An unchecked return value within the AMD Platform Management Framework PMF could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution...

7.1CVSS6.1AI score0.00114EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/14 1:8 p.m.22 views

EUVD-2026-28800

Absinthe: Quadratic fragment-name uniqueness check...

8.7CVSS5.8AI score0.00624EPSS
Exploits1References5
EUVD
EUVD
added 2026/05/13 6:30 p.m.22 views

EUVD-2026-30023

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to the same BarraCuda family as the ST2000DM008-2FR102...

5.8AI score0.00114EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/13 6:30 p.m.23 views

EUVD-2026-30025

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.6AI score0.00102EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/13 1:27 p.m.22 views

EUVD-2026-29953

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to blind SQL Injection via the 'rid' parameter in all versions up to, and including, 5.9.8.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQ...

6.5CVSS5.9AI score0.00269EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/13 5:29 a.m.22 views

EUVD-2025-209822

The ilGhera Support System for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'getticketcontentcallback' function in all versions up to, and including, 1.3.0. This makes it possible for unauthenticated attackers to view any...

5.3CVSS5.8AI score0.00256EPSS
Exploits0References6
Total number of security vulnerabilities5000