CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

68 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в rustc

In the standard library of Rust before version 1.52.0, a double-free error can occur in the Vec::fromiter function if the process of freeing the element causes a panic...

9.8CVSS7.2AI score0.00737EPSS

Exploits1References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в espeak-ng

It was discovered that Espeak-ng 1.52-dev contains a buffer overflow issue due to a function called SetUpPhonemeTable in the synthdata.c file...

5.3CVSS6.3AI score0.0002EPSS

Exploits1References1

NVD•added 2026/02/20 4:22 p.m.•2 views

CVE-2025-68842

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in totalbounty Widget Logic Visual widget-logic-visual allows Reflected XSS.This issue affects Widget Logic Visual: from n/a through = 1.52...

7.1CVSS0.00045EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•2 views

CVE-2025-68842 WordPress Widget Logic Visual plugin <= 1.52 - Reflected Cross Site Scripting (XSS) vulnerability

5.3AI score0.00045EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•19 views

CVE-2025-68842 WordPress Widget Logic Visual plugin <= 1.52 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00045EPSS

Exploits0References1

Positive Technologies•added 2026/02/20 12:0 a.m.•4 views

PT-2026-21104

Name of the Vulnerable Software and Affected Versions Widget Logic Visual versions through 1.52 Description The software contains a flaw related to improper handling of user-supplied data when creating web pages, potentially leading to Reflected Cross-site Scripting XSS. This means an attacker...

5.4AI score0.00045EPSS

Exploits0References3

CNNVD•added 2026/02/20 12:0 a.m.•4 views

WordPress plugin Widget Logic Visual 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

7.1CVSS5.6AI score0.00045EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2009-2911

Malware in sbrugna...

5CVSS6.4AI score0.04377EPSS

Exploits1References4

RedhatCVE•added 2025/09/24 6:30 p.m.•2 views

CVE-2025-57920

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CK MacLeod Category Featured Images Extended category-featured-images-extended allows Stored XSS.This issue affects Category Featured Images Extended: from n/a through = 1.52...

5.9CVSS5.9AI score0.00039EPSS

Exploits0References1

NVD•added 2025/09/22 7:15 p.m.•1 views

CVE-2025-57920

5.9CVSS0.00039EPSS

Exploits0References1

Patchstack•added 2025/09/22 6:39 p.m.•3 views

WordPress Form Generator for WordPress Plugin <= 1.52 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by 0xVenus in WordPress Plugin Form Generator for WordPress versions = 1.52...

5.9CVSS6AI score0.00039EPSS

Exploits0Affected Software1

Vulnrichment•added 2025/09/22 6:25 p.m.•1 views

CVE-2025-57920 WordPress Category Featured Images Extended Plugin <= 1.52 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS5.2AI score0.00039EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•2 views

PT-2025-38771

Name of the Vulnerable Software and Affected Versions CK MacLeod Category Featured Images Extended versions through 1.52 Description The software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting XSS. This means that...

5.9CVSS6.3AI score0.00039EPSS

Exploits0References3

Microsoft CVE•added 2025/05/05 7:0 a.m.•2 views

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow

...

5.3CVSS5.5AI score0.0002EPSS

Exploits1

Vulnrichment•added 2025/03/26 12:0 a.m.•9 views

CVE-2024-55964

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that...

7.3AI score0.56618EPSS

Exploits2References1

Vulnrichment•added 2024/05/31 5:23 p.m.•10 views

CVE-2024-1275 Vulnerability in Baxter Welch Allyn Connex Spot Monitor

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52...

9.1CVSS6.9AI score0.002EPSS

Exploits0References1

OSV•added 2024/01/05 11:6 a.m.•1 views

OESA-2024-1021 espeak-ng security update

The eSpeak NG is a compact open source software text-to-speech synthesizer for Linux, Windows, Android and other operating systems. It supports 70 languages and accents. It is based on the eSpeak engine created by Jonathan Duddington. Security Fixes: Espeak-ng 1.52-dev was discovered to contain a...

5.5CVSS7.4AI score0.0003EPSS

Exploits5References6