CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/11/10 4:40 a.m.•1 views

EUVD-2025-38891

Malicious code in mahesa-soto51-breki npm...

6.6AI score

Exploits0

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-38891 Malicious code in wati-empal44-breki (npm)

The package wati-empal44-breki was found to contain malicious code...

7.2AI score

Exploits0

RedhatCVE•added 2025/05/23 10:21 a.m.•7 views

CVE-2024-38891

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Sniffing Network Traffic attack due to the cleartext transmission of sensitive information...

9.1CVSS7AI score0.00103EPSS

Exploits0References1

Circl•added 2024/08/03 6:30 a.m.•0 views

CVE-2024-38891

creationtimestamp| type| source ---|---|--- 2024-08-03 06:30:47+00:00| seen| https://t.me/cvedetector/2380...

9.1CVSS4.8AI score0.00103EPSS

Exploits0References1

OSV•added 2024/08/02 9:16 p.m.•0 views

CVE-2024-38891

7.5CVSS5.8AI score0.00103EPSS

Exploits0References4

Circl•added 2023/09/15 2:24 a.m.•1 views

CVE-2023-38891

creationtimestamp| type| source ---|---|--- 2023-09-15 02:24:47+00:00| seen| https://t.me/cibsecurity/70581...

8.8CVSS8.1AI score0.04189EPSS

Exploits0References1

OSV•added 2023/09/14 11:15 p.m.•3 views

CVE-2023-38891

SQL injection vulnerability in Vtiger CRM v.7.5.0 allows a remote authenticated attacker to escalate privileges via the getQueryColumnsList function in ReportRun.php...

8.8CVSS5.9AI score0.04189EPSS

Exploits0References2

ATTACKERKB•added 2023/09/14 11:15 p.m.•3 views

CVE-2023-38891

SQL injection vulnerability in Vtiger CRM v.7.5.0 allows a remote authenticated attacker to escalate privileges via the getQueryColumnsList function in ReportRun.php...

8.8CVSS5.8AI score0.04189EPSS

Exploits0References3

CVE•added 2023/09/14 12:0 a.m.•40 views

CVE-2023-38891

CVE-2023-38891 affects Vtiger CRM v7.5.0 in the Reports module: insufficient validation in ReportRun.php (getQueryColumnsList) enables a remote-authenticated user to escalate privileges via crafted selected_fields, with evidence of exploitation in VTiger’s Reports/ReportRun.php checks and a confi...

8.8CVSS8.7AI score0.04189EPSS

Exploits0References2Affected Software1

Cvelist•added 2023/09/14 12:0 a.m.•18 views

CVE-2023-38891

SQL injection vulnerability in Vtiger CRM v.7.5.0 allows a remote authenticated attacker to escalate privileges via the getQueryColumnsList function in ReportRun.php...

9AI score0.04189EPSS

Exploits0References2

IBM Security Bulletins•added 2021/11/23 4:14 a.m.•19 views

Security Bulletin: Weak Cryptographic Control Vulnerability Affects IBM Sterling Connect:Direct Web Services (CVE-2021-38891)

Summary IBM Sterling Connect:Direct Web Services used weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. The vulnerability has been addressed. Vulnerability Details CVEID: CVE-2021-38891 DESCRIPTION: IBM Sterling Connect:Direct Web...

7.5CVSS7.1AI score0.00096EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by