CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

OSV•added 2026/04/08 3:8 p.m.•0 views

MINI-8V98-6889-57XW

Bulletin has no description...

5.7AI score

Exploits0

OSV•added 2026/01/29 12:49 a.m.•1 views

CGA-HGV3-6889-9FR2

Bulletin has no description...

7.5CVSS5.8AI score0.00184EPSS

Exploits0

Vulnrichment•added 2025/06/30 5:32 a.m.•2 views

CVE-2025-6889 code-projects Movie Ticketing System logIn.php sql injection

A vulnerability was found in code-projects Movie Ticketing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /logIn.php. The manipulation of the argument postName leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS7.8AI score0.00204EPSS

Exploits1References5

CVE•added 2025/06/30 5:32 a.m.•12 views

CVE-2025-6889

CVE-2025-6889 affects code-projects Movie Ticketing System 1.0. The vulnerability is in the file /logIn.php where manipulating the parameter postName triggers a SQL injection . Exploitation is described as remote with a publicly disclosed exploit, indicating potential active risk. NVD lists a CVS...

9.8CVSS7.5AI score0.00204EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/06/30 5:32 a.m.•9 views

CVE-2025-6889 code-projects Movie Ticketing System logIn.php sql injection

7.5CVSS0.00204EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 8:2 a.m.•6 views

CVE-2024-6889

The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

4.8CVSS5.7AI score0.00283EPSS

Exploits1References1

Circl•added 2025/05/02 5:16 p.m.•0 views

RHSA-2024:6889

creationtimestamp| type| source ---|---|--- 2025-05-02 17:16:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14524...

4.8AI score

Exploits0References1

Circl•added 2024/09/04 9:22 a.m.•0 views

CVE-2024-6889

creationtimestamp| type| source ---|---|--- 2024-09-04 09:22:42+00:00| seen| https://t.me/cvedetector/4753...

4.8CVSS4.8AI score0.00283EPSS

Exploits1References1

Vulnrichment•added 2024/09/04 6:0 a.m.•12 views

CVE-2024-6889 Secure Copy Content Protection and Content Locking < 4.1.7 - Admin+ Stored XSS

5.8AI score0.00283EPSS

Exploits1References1

Cvelist•added 2024/09/04 6:0 a.m.•15 views

CVE-2024-6889 Secure Copy Content Protection and Content Locking < 4.1.7 - Admin+ Stored XSS

0.00283EPSS

Exploits1References1

Tenable Nessus•added 2024/07/10 12:0 a.m.•30 views

Ubuntu 22.04 LTS / 23.10 / 24.04 LTS : .NET vulnerabilities (USN-6889-1)

The remote Ubuntu 22.04 LTS / 23.10 / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6889-1 advisory. It was discovered that .NET did not properly handle object deserialization. An attacker could possibly use this issue to cause a deni...

8.1CVSS8.1AI score0.04361EPSS

Exploits0References4

OSV•added 2024/06/06 12:28 p.m.•9 views

CGA-JWXC-6889-3V85

Bulletin has no description...

5.9CVSS7.2AI score0.00602EPSS

Exploits0

OSV•added 2023/12/16 9:15 a.m.•13 views

CVE-2023-6889

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.17...

5.4CVSS5.3AI score

Exploits0References2

CVE•added 2023/12/16 8:57 a.m.•45 views

CVE-2023-6889

CVE-2023-6889 is a stored Cross-site Scripting (XSS) vulnerability affecting phpMyFAQ versions prior to 3.1.17 (GitHub repository thorsten/phpmyfaq). The available connected documents consistently describe the flaw as a stored XSS issue in phpMyFAQ and reference public disclosures/advisories (inc...

5.4CVSS5.2AI score0.00115EPSS

Exploits1References2Affected Software1

CNNVD•added 2023/07/04 12:0 a.m.•2 views

部分MediaTek芯片安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company MediaTek. A security vulnerability exists in some MediaTek chips, which stems from a local privilege escalation due to a lack of privilege checking in vow. The following products are affected: MT6580, MT6735, MT6737, MT6739,...

6.7CVSS6.5AI score0.00032EPSS

Exploits0References2

Cvelist•added 2021/01/05 5:21 p.m.•11 views

CVE-2020-6889

...

Exploits0

CVE•added 2021/01/05 5:21 p.m.•31 views

CVE-2020-6889

CVE-2020-6889 entry is rejected/not used per the initial description.

6.9AI score

Exploits0

CVE•added 2018/02/12 3:0 a.m.•32 views

CVE-2018-6889

TypeSetter CMS 5.1 is affected by a Host header injection vulnerability. The root cause is improper handling of the Host header, enabling attackers to poison web caches, execute advanced password-reset attacks, and trigger arbitrary user redirection. Public disclosures and PoCs in connected sourc...

8.8CVSS8.9AI score0.02772EPSS

Exploits3References2Affected Software1

Tenable Nessus•added 2017/08/31 12:0 a.m.•32 views

SUSE SLED12 Security Update : libraw (SUSE-SU-2017:2300-1)

This update for libraw fixes the following issues : - CVE-2015-3885: A specially crafted raw image file could have caused a Denial of Service through an integer overflow. bsc930683 - CVE-2015-8367: The function phaseonecorrect did not handle memory object initialization correctly, which may have...

9.8CVSS7.4AI score0.03564EPSS

Exploits0References21

OSV•added 2017/07/28 6:12 p.m.•7 views

MGASA-2017-0223 Updated libraw packages fix security vulnerabilities

A memory corruption in parsetiffifd function CVE-2017-6886. A memory corruption via e.g. a specially crafted KDC file parsetiffifd CVE-2017-6887. An integer overflow error within the "foveonloadcamf" function CVE-2017-6889. A boundary error within the "foveonloadcamf" function CVE-2017-6890...

9.8CVSS8.9AI score0.01569EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by