CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-20486

Malware in sbrugna...

6.5CVSS6.5AI score0.01886EPSS

Exploits3References6

OSV•added 2025/05/30 3:37 a.m.•5 views

CVE-2025-48068 Information exposure in Next.js dev server due to lack of origin verification

Next.js is a React framework for building full-stack web applications. In versions starting from 13.0 to before 14.2.30 and 15.0.0 to before 15.2.2, Next.js may have allowed limited source code exposure when the dev server was running with the App Router enabled. The vulnerability only affects...

2.3CVSS8.6AI score0.00101EPSS

Exploits0References4

OSV•added 2021/05/04 2:15 p.m.•0 views

CVE-2021-3154

An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can retrieve cleartext passwords via macro Injection. NOTE: this had a distinct fix relative to CVE-2020-35481...

7.5CVSS5.8AI score0.02914EPSS

Exploits0References1

CNNVD•added 2021/05/04 12:0 a.m.•2 views

SolarWinds Serv-U 注入漏洞

SolarWinds Serv-U FTP Server is a suite of FTP and MFT file transfer software from the U.S. company SolarWinds. A security vulnerability exists in SolarWinds Serv-U versions prior to 15.2.2, which can be exploited by an unauthenticated attacker to retrieve plaintext passwords via macro injection...

7.5CVSS7.3AI score0.02914EPSS

Exploits0References2

OSV•added 2021/02/03 4:15 p.m.•1 views

CVE-2020-35481

SolarWinds Serv-U before 15.2.2 allows Unauthenticated Macro Injection...

9.8CVSS7.2AI score0.04459EPSS

Exploits0References1

OSV•added 2021/02/03 4:15 p.m.•1 views

CVE-2020-35482

SolarWinds Serv-U before 15.2.2 allows authenticated reflected XSS...

5.4CVSS6.1AI score0.04259EPSS

Exploits0References1

NVD•added 2021/02/03 4:15 p.m.•8 views

CVE-2020-35482

SolarWinds Serv-U before 15.2.2 allows authenticated reflected XSS...

5.4CVSS0.04259EPSS

Exploits0References1

NVD•added 2021/02/03 4:15 p.m.•11 views

CVE-2020-27994

SolarWinds Serv-U before 15.2.2 allows Authenticated Directory Traversal...

6.5CVSS0.01886EPSS

Exploits3References4

Cvelist•added 2021/02/03 3:53 p.m.•14 views

CVE-2020-28001

SolarWinds Serv-U before 15.2.2 allows Authenticated Stored XSS...

5.5AI score0.0163EPSS

Exploits2References4

CVE•added 2021/02/03 3:49 p.m.•47 views

CVE-2020-35482

CVE-2020-35482 affects SolarWinds Serv-U FTP Server before v15.2.2, where an authenticated user can trigger a reflected Cross-Site Scripting (XSS) vulnerability in the web context. The vulnerability is linked to SolarWinds Serv-U 15.2.2 release notes as the fix/upgrade path. Connected sources cor...

5.4CVSS5.5AI score0.04259EPSS

Exploits0References1Affected Software1

CNNVD•added 2021/02/03 12:0 a.m.•3 views

SolarWinds Serv-U FTP Server Path Traversal Vulnerability

SolarWinds Serv-U FTP Server is a suite of FTP and MFT file transfer software from the U.S. company SolarWinds. A path traversal vulnerability exists in SolarWinds Serv-U before 15.2.2 that allows authenticated directory traversal...

6.5CVSS6.6AI score0.01886EPSS

Exploits3References6

CNNVD•added 2021/02/03 12:0 a.m.•2 views

SolarWinds Serv-U FTP Server 跨站脚本漏洞

SolarWinds Serv-U FTP Server is a set of U.S. SolarWinds FTP and MFT file transfer software. A cross-site scripting vulnerability exists in SolarWinds Serv-U before 15.2.2, which allows reflection of XSS via authentication.No detailed vulnerability details are available at this time...

5.4CVSS5.9AI score0.04259EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by