CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

RedhatCVE•added 2025/05/23 11:34 a.m.•3 views

CVE-2025-22525

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bharat Kambariya Donation Block For PayPal donations-block allows Stored XSS.This issue affects Donation Block For PayPal: from n/a through = 2.2.0...

6.5CVSS7.2AI score0.00152EPSS

Exploits0References1

RedhatCVE•added 2025/02/14 1:46 a.m.•2 views

CVE-2024-22525

dnspod-sr 0dfbd37 contains a SEGV...

5.5CVSS6.9AI score0.00093EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 8:1 p.m.•7 views

CVE-2022-22525

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function...

7.2CVSS7.7AI score0.00679EPSS

Exploits0References1

Circl•added 2025/01/07 4:18 p.m.•1 views

CVE-2025-22525

creationtimestamp| type| source ---|---|--- 2025-01-07 16:18:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf62ffnont25...

6.5CVSS6.9AI score0.00152EPSS

Exploits0References1

Cvelist•added 2025/01/07 2:57 p.m.•13 views

CVE-2025-22525 WordPress Donation Block For PayPal Plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00152EPSS

Exploits0References1

CVE•added 2025/01/07 2:57 p.m.•41 views

CVE-2025-22525

CVE-2025-22525 affects the Donation Block For PayPal WordPress plugin. It is described as an stored XSS vulnerability (Cross-site Scripting) due to improper neutralization of input during web page generation, impacting Donation Block For PayPal versions up to 2.2.0. The connected Red Hat/Wordfenc...

6.5CVSS7.2AI score0.00152EPSS

Exploits0References1

NVD•added 2024/06/06 10:15 p.m.•10 views

CVE-2024-22525

dnspod-sr 0dfbd37 contains a SEGV...

5.5CVSS0.00093EPSS

Exploits1References1

Cvelist•added 2024/06/06 9:29 p.m.•9 views

CVE-2024-22525

dnspod-sr 0dfbd37 contains a SEGV...

0.00093EPSS

Exploits1References1

CVE•added 2024/06/06 9:29 p.m.•1660 views

CVE-2024-22525

CVE-2024-22525 concerns the dnspod-sr package at version 0dfbd37, which contains a SEGV (segmentation fault). The CVSS data indicates a LOCAL attack vector with LOW privileges required and NO user interaction, resulting in a HIGH availability impact. Multiple connected sources corroborate that th...

5.5CVSS7.2AI score0.00093EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2022/09/28 1:45 p.m.•7 views

CVE-2022-22525 Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection

7.2CVSS7.3AI score0.00679EPSS

Exploits0References1

CVE•added 2022/09/28 1:45 p.m.•47 views

CVE-2022-22525

The CVE-2022-22525 affects Carlo Gavazzi UWP3.0 and CPY Car Park Server 2.8.3. It stems from missing input sanitization in the backup restore function, enabling a remote attacker with admin rights to execute arbitrary commands. Connections across sources consistently identify the affected compone...

7.2CVSS7.3AI score0.00679EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/09/28 1:45 p.m.•12 views

CVE-2022-22525 Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection

7.2CVSS7.5AI score0.00679EPSS

Exploits0References1

Circl•added 2022/09/27 7:26 p.m.•2 views

CVE-2022-22525

creationtimestamp| type| source ---|---|--- 2022-09-27 19:26:31+00:00| seen| https://t.me/truesecator/3479 2022-09-28 09:09:47+00:00| seen| https://t.me/icscert/615 2022-09-28 18:34:25+00:00| seen| https://t.me/cibsecurity/50594...

7.2CVSS7AI score0.00679EPSS

Exploits0References3

Circl•added 2021/09/02 8:36 p.m.•0 views

CVE-2021-22525

creationtimestamp| type| source ---|---|--- 2021-09-02 20:36:47+00:00| seen| https://t.me/cibsecurity/28230...

5.5CVSS5.5AI score0.00052EPSS

Exploits0References1

CVE•added 2021/09/02 4:56 p.m.•34 views

CVE-2021-22525

NetIQ Access Manager CVE-2021-22525 describes an information-leakage vulnerability in NAM prior to version 5.0.1. The root cause is insufficient privilege controls that can disclose sensitive information (confidentiality impact reported as HIGH in CVSS data). Affected product/component: NetIQ Acc...

5.5CVSS5.3AI score0.00052EPSS

Exploits0References1Affected Software1