CWE-1125
5 CVEs classified under CWE-1125. Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-0435 | Critical | 9.8 | 2023-01-22 | Excessive Attack Surface in GitHub repository pyload/pyload prior to 0.5.0b3.dev41. |
CVE-2022-1715 | Critical | 9.8 | 2022-05-13 | Account Takeover in GitHub repository neorazorx/facturascripts prior to 2022.07. |
CVE-2024-5386 | High | 8.8 | 2026-02-02 | In lunary-ai/lunary version 1.2.2, an account hijacking vulnerability exists due to a password reset token leak. A user with a 'viewer' role can exploit this v⦠|
CVE-2023-49722 | High | 8.3 | 2024-01-09 | Network port 8899 open in WiFi firmware of BCC101/BCC102/BCC50 products, that allows an attacker to connect to the device via same WiFi network. |
CVE-2022-2037 | High | 8.0 | 2022-06-09 | Excessive Attack Surface in GitHub repository tooljet/tooljet prior to v1.16.0. |