CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-38886 Malicious code in watermelon-ymh-project (npm)

The package watermelon-ymh-project was found to contain malicious code...

7.2AI score

Exploits0

RedhatCVE•added 2025/05/23 10:21 a.m.•9 views

CVE-2024-38886

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Traffic Injection attack due to improper verification of the source of a communication channel...

9.8CVSS7.4AI score0.00862EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:9 a.m.•3 views

CVE-2023-38886

An issue in Dolibarr ERP CRM v.17.0.1 and before allows a remote privileged attacker to execute arbitrary code via a crafted command/script...

7.2CVSS7.7AI score0.50447EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:15 p.m.•5 views

CVE-2022-38886

The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS9.3AI score0.00796EPSS

Exploits1References1

Circl•added 2024/08/02 8:42 p.m.•0 views

CVE-2024-38886

creationtimestamp| type| source ---|---|--- 2024-08-02 20:42:29+00:00| seen| https://t.me/cvedetector/2366...

9.8CVSS4.8AI score0.00862EPSS

Exploits0References1

Circl•added 2023/09/20 8:8 a.m.•2 views

CVE-2023-38886

creationtimestamp| type| source ---|---|--- 2023-09-20 08:08:22+00:00| seen| https://t.me/cibsecurity/70773...

7.2CVSS6.9AI score0.50447EPSS

Exploits1References1

UbuntuCve•added 2023/09/20 1:15 a.m.•14 views

CVE-2023-38886

An issue in Dolibarr ERP CRM v.17.0.1 and before allows a remote privileged attacker to execute arbitrary code via a crafted command/script...

7.2CVSS7.4AI score0.50447EPSS

Exploits1References3

CVE•added 2023/09/20 12:0 a.m.•51 views

CVE-2023-38886

Dolibarr ERP CRM v17.0.1 and earlier is affected by CVE-2023-38886, enabling a remote authenticated attacker with high privileges to execute arbitrary code via a crafted command/script. The vulnerability is associated with a CVSS v3.1 base score of 7.2 (High) with network attack vector, low compl...

7.2CVSS7.1AI score0.50447EPSS

Exploits1References2Affected Software1

Circl•added 2022/09/19 8:38 p.m.•2 views

CVE-2022-38886

creationtimestamp| type| source ---|---|--- 2022-09-19 20:38:00+00:00| seen| https://t.me/cibsecurity/50049...

9.8CVSS8.7AI score0.00796EPSS

Exploits1References1

NVD•added 2022/09/19 4:15 p.m.•8 views

CVE-2022-38886

9.8CVSS0.00796EPSS

Exploits1References3

Cvelist•added 2022/09/19 3:35 p.m.•16 views

CVE-2022-38886

9.7AI score0.00796EPSS

Exploits1References3

CVE•added 2022/09/19 3:35 p.m.•47 views

CVE-2022-38886

CVE-2022-38886 affects the Python package d8s-xml distributed on PyPI. The vulnerability stems from a third‑party backdoor in the package ecosystem, specifically the democritus-strings package, with the affected release identified as version 0.1.0. This backdoor enables potential remote code exec...

9.8CVSS9.4AI score0.00796EPSS

Exploits1References3Affected Software1

Circl•added 2022/04/22 8:28 p.m.•1 views

CVE-2021-38886

creationtimestamp| type| source ---|---|--- 2022-04-22 20:28:05+00:00| seen| https://t.me/cibsecurity/41334...

8.8CVSS5.4AI score0.0018EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by