CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Full Path Disclosure vulnerability in AWStats through 7.6 allows remote attackers to know where the config file is allocated, obtaining the full path of the...

5.3CVSS6.1AI score0.00055EPSS

Exploits1References3

RedhatCVE•added 2025/08/22 8:31 a.m.•8 views

CVE-2025-49890

Deserialization of Untrusted Data vulnerability in ThemeREX Organic Beauty organic-beauty allows Object Injection.This issue affects Organic Beauty: from n/a through = 1.4.6...

9.8CVSS5.9AI score0.00151EPSS

Exploits0References1

NVD•added 2025/08/20 8:15 a.m.•5 views

CVE-2025-49890

Deserialization of Untrusted Data vulnerability in ThemeREX Organic Beauty organic-beauty allows Object Injection.This issue affects Organic Beauty: from n/a through = 1.4.6...

9.8CVSS0.00151EPSS

Exploits0References1

Vulnrichment•added 2025/08/20 8:3 a.m.•2 views

CVE-2025-49890 WordPress AWStats Script plugin <= 0.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jorge Garcia de Bustos AWStats Script allows Stored XSS. This issue affects AWStats Script: from n/a through 0.3...

5.9CVSS6.9AI score0.00151EPSS

Exploits0References1

Cvelist•added 2025/08/20 8:3 a.m.•10 views

CVE-2025-49890 WordPress Organic Beauty Theme <= 1.4.6 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in ThemeREX Organic Beauty organic-beauty allows Object Injection.This issue affects Organic Beauty: from n/a through = 1.4.6...

9.8CVSS0.00151EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by