CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

105 matches found

OSV•added 2 days ago•2 views

MINI-GW76-7R5C-3825

Bulletin has no description...

9.1CVSS5.7AI score0.00054EPSS

Exploits0

NVD•added 2026/03/11 7:16 a.m.•2 views

CVE-2026-3825

IFTOP developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...

6.1CVSS0.00054EPSS

Exploits0References2

ATTACKERKB•added 2026/03/11 6:35 a.m.•2 views

CVE-2026-3825

6.1CVSS6AI score0.00054EPSS

Exploits0References3

Circl•added 2026/03/11 5:48 a.m.•0 views

CVE-2026-3825

creationtimestamp| type| source ---|---|--- 2026-03-11 05:48:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10756-73f66-2.html...

6.1CVSS5.7AI score0.00054EPSS

Exploits0References1

EUVD•added 2026/01/22 4:52 p.m.•1 views

EUVD-2026-3825

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Chill Modula Image Gallery modula-best-grid-gallery allows Stored XSS.This issue affects Modula Image Gallery: from n/a through = 2.13.4...

5.4AI score0.00059EPSS

Exploits0References2

Tenable Nessus•added 2025/09/04 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2011-3825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the...

5CVSS5.6AI score0.00278EPSS

Exploits0References2

OSV•added 2025/08/11 10:43 a.m.•1 views

CGA-CHJ6-P4GR-3825

Bulletin has no description...

7CVSS7.2AI score0.00073EPSS

Exploits0

OSV•added 2025/08/09 8:3 a.m.•2 views

MINI-VJPP-3825-9Q3M

Bulletin has no description...

7CVSS6.6AI score0.00073EPSS

Exploits0

OSV•added 2025/08/02 8:51 a.m.•2 views

MINI-CX9G-34QP-3825

Bulletin has no description...

7.2CVSS6.2AI score0.00158EPSS

Exploits0

RedhatCVE•added 2025/05/23 10:16 a.m.•4 views

CVE-2024-3825

Versions of the BlazeMeter Jenkins plugin prior to 4.22 contain a flaw which results in credential enumeration...

4.3CVSS6.6AI score0.00166EPSS

Exploits0

RedhatCVE•added 2025/05/22 4:39 p.m.•2 views

CVE-2020-3825

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to...

8.8CVSS7.3AI score0.00588EPSS

Exploits0

NVD•added 2025/04/20 12:15 p.m.•19 views

CVE-2025-3825

A vulnerability, which was classified as problematic, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this issue is some unknown functionality of the file add-category.php. The manipulation of the argument txtcategoryname leads to cross site scriptin...

4.8CVSS0.00132EPSS

Exploits1References4

Circl•added 2025/04/20 11:58 a.m.•4 views

CVE-2025-3825

creationtimestamp| type| source ---|---|--- 2025-04-20 11:58:07+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnalvb6v6la2 2025-04-20 12:01:14+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12612 2025-04-20...

4.8CVSS3.9AI score0.00132EPSS

Exploits1References4

CVE•added 2025/04/20 11:31 a.m.•62 views

CVE-2025-3825

CVE-2025-3825 affects SourceCodester Web-based Pharmacy Product Management System v1.0, specifically the add-category.php file. The vulnerability arises from manipulation of the txtcategory_name parameter, leading to cross-site scripting. The issue can be triggered remotely and, per connected sou...

4.8CVSS3.4AI score0.00132EPSS

Exploits1References4Affected Software1

Circl•added 2025/01/28 10:20 p.m.•4 views

CVE-2023-3825

creationtimestamp| type| source ---|---|--- 2025-01-28 22:20:45+00:00| seen| https://infosec.exchange/users/cR0w/statuses/113908308068172337 2025-01-30 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-030-04...

7.5CVSS6.8AI score0.00107EPSS

Exploits0References2

Vulnrichment•added 2024/04/17 3:3 p.m.•8 views

CVE-2024-3825 CSRF in BlazeMeter Jenkins plugin

Versions of the BlazeMeter Jenkins plugin prior to 4.22 contain a flaw which results in credential enumeration...

4.3CVSS6.6AI score0.00166EPSS

Exploits0References2

OpenVAS•added 2024/03/04 12:0 a.m.•22 views

openSUSE: Security Advisory for binutils (SUSE-SU-2023:3825-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.0014EPSS

Exploits16References2

Tenable Nessus•added 2023/11/06 12:0 a.m.•23 views

Rocky Linux 8 : GNOME (RLSA-2020:1766)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:1766 advisory. - There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of...

8.8CVSS7.2AI score0.006EPSS

Exploits2References72

NVD•added 2023/07/31 11:15 p.m.•11 views

CVE-2023-3825

PTC’s KEPServerEX Versions 6.0 to 6.14.263 are vulnerable to being made to read a recursively defined object that leads to uncontrolled resource consumption. KEPServerEX uses OPC UA, a protocol which defines various object types that can be nested to create complex arrays. It does not implement a...

7.5CVSS7.4AI score0.00107EPSS

Exploits0References1

Vulnrichment•added 2023/07/31 10:53 p.m.•12 views

CVE-2023-3825

7.5CVSS6.7AI score0.00107EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by