CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

Packet Storm News•added 2026/03/31 12:0 a.m.•0 views

Efficient Software Vulnerability Detection Using Transformer-Based Models

Detecting software vulnerabilities is critical to ensuring the security and reliability of modern computer systems. Deep neural networks have shown promising results on vulnerability detection, but they lack the capability to capture global contextual information on vulnerable code. To address th...

6AI score

Exploits0

OSV•added 2026/02/12 8:51 a.m.•3 views

BIT-MOODLE-2025-67850 Moodle: moodle: cross-site scripting vulnerability via inadequate input filtering in formula editor

A flaw was found in moodle. This vulnerability, known as Cross-Site Scripting XSS, occurs due to insufficient checks on user-provided data in the formula editor's arithmetic expression fields. A remote attacker could inject malicious code into these fields. When other users view these expressions...

7.3CVSS5.7AI score0.00012EPSS

Exploits0References3

Tenable Nessus•added 2026/02/04 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-67850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in moodle. This vulnerability, known as Cross-Site Scripting XSS, occurs due to insufficient checks on user-provided data in the formula editor...

7.3CVSS5.6AI score0.00012EPSS

Exploits0References2

OSV•added 2026/02/03 12:30 p.m.•0 views

GHSA-6MMV-F6C6-V6Q8 Moodle vulnerable to Cross-site Scripting

A flaw was found in Moodle. This vulnerability, known as Cross-site Scripting XSS, occurs due to insufficient checks on user-provided data in the formula editor's arithmetic expression fields. A remote attacker could inject malicious code into these fields. When other users view these expressions...

7.3CVSS5.6AI score0.00012EPSS

Exploits0References6

Github Security Blog•added 2026/02/03 12:30 p.m.•4 views

Moodle vulnerable to Cross-site Scripting

7.3CVSS5.6AI score0.00012EPSS

Exploits0References6Affected Software1

NVD•added 2026/02/03 11:15 a.m.•3 views

CVE-2025-67850

7.3CVSS0.00012EPSS

Exploits0References2

OSV•added 2026/02/03 11:15 a.m.•1 views

CVE-2025-67850

6.1CVSS5.7AI score0.00012EPSS

Exploits0References2

OSV•added 2026/02/03 11:15 a.m.•1 views

UBUNTU-CVE-2025-67850

7.3CVSS5.9AI score0.00012EPSS

Exploits0References4

EUVD•added 2026/02/03 10:52 a.m.•1 views

EUVD-2025-206736

7.3CVSS5.6AI score0.00012EPSS

Exploits0References2

ATTACKERKB•added 2026/02/03 10:52 a.m.•2 views

CVE-2025-67850

7.3CVSS5.6AI score0.00012EPSS

Exploits0References3

Cvelist•added 2026/02/03 10:52 a.m.•22 views

CVE-2025-67850 Moodle: moodle: cross-site scripting vulnerability via inadequate input filtering in formula editor

7.3CVSS0.00012EPSS

Exploits0References2

Vulnrichment•added 2026/02/03 10:52 a.m.•1 views

CVE-2025-67850 Moodle: moodle: cross-site scripting vulnerability via inadequate input filtering in formula editor

7.3CVSS5.6AI score0.00012EPSS

Exploits0References2

CVE•added 2026/02/03 10:52 a.m.•8 views

CVE-2025-67850

CVE-2025-67850 – Moodle XSS via formula editor : Affected component is Moodle, where insufficient validation of user-provided data in the formula editor’s arithmetic expression fields allows a remote attacker to inject malicious code. When other users view these expressions, the script can execut...

7.3CVSS5.6AI score0.00012EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/02/03 12:0 a.m.•1 views

PT-2026-6383

7.3CVSS5.7AI score0.00012EPSS

Exploits0References7

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 7 : ksh-20120801-140.el7 (AXSA:2020-4475:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4475:02 advisory. ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection CVE-2019-14868 Tenable has extracted the...

7.8CVSS5.7AI score0.00204EPSS

Exploits0References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 4 : ksh-20120801-38.AXS4 (AXSA:2020-4474:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4474:01 advisory. ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection CVE-2019-14868 Tenable has extracted the...

7.8CVSS5.7AI score0.00204EPSS

Exploits0References2

RedhatCVE•added 2025/12/19 12:37 p.m.•2 views

CVE-2025-67850

6.4AI score0.00012EPSS

Exploits0References2

Tenable Nessus•added 2024/05/11 12:0 a.m.•13 views

RHEL 5 : ksh (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection...

8.2AI score0.00204EPSS

Exploits0References1

RedHat Linux•added 2020/12/07 11:12 a.m.•1 views

ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection

A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables...

7.8CVSS6AI score0.00204EPSS

Exploits0References4

RedHat Linux•added 2020/12/07 11:6 a.m.•2 views

ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection

7.8CVSS6AI score0.00204EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by