CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fixes: JDK: Better Glyph drawing CVE-2025-30749 JDK: Enhance TLS protocol support CVE-2025-30754 JDK: Improve HTTP client header handling CVE-2025-50059 JDK: Better...

8.6CVSS7.5AI score0.01058EPSS

Exploits1References5

Rockylinux•added 2025/10/03 7:56 p.m.•6 views

java-21-openjdk security update

An update is available for java-21-openjdk. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime...

8.6CVSS7.2AI score0.01058EPSS

Exploits1

GithubExploit•added 2025/10/03 7:49 a.m.•173 views

Exploit-Notes

Exploit Notes Exploit Notes is sticky notes for pentesting...

6.6AI score

Exploits0

GithubExploit•added 2025/10/01 9:53 a.m.•219 views

Exploit for Out-of-bounds Write in Polkit_Project Polkit

🛡️ pwnkit-helper - Elevate Your Hacking Skills Safely !Down...

7.8CVSS7.1AI score0.94921EPSS

Exploits151

OSV•added 2025/09/29 9:15 p.m.•2 views

CVE-2025-34207

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to 22.0.1049 and Application prior to 20.0.2786 VA and SaaS deployments configure the SSH client within Docker instances with the following options: UserKnownHostsFile=/dev/null, StrictHostKeyChecking=no, and ForwardAgent yes. These...

9.8CVSS5.8AI score

Exploits0References4

OSV•added 2025/09/27 12:51 a.m.•5 views

CVE-2025-59932 FlagForgeCTF Unauthenticated Resource Modification/Deletion

Flag Forge is a Capture The Flag CTF platform. From versions 2.0.0 to before 2.3.1, the /api/resources endpoint previously allowed POST and DELETE requests without proper authentication or authorization. This could have enabled unauthorized users to create, modify, or delete resources on the...

8.6CVSS6.9AI score0.00346EPSS

Exploits0References3

OSSF Malicious Packages•added 2025/09/26 9:26 a.m.•3 views

Malicious code in com.unity.simulation.capture (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0

OSV•added 2025/09/26 9:26 a.m.•2 views

MAL-2025-47636 Malicious code in com.unity.simulation.capture (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0

RedhatCVE•added 2025/09/25 2:53 a.m.•3 views

CVE-2025-59826

Flag Forge is a Capture The Flag CTF platform. In version 2.1.0, non-admin users can create arbitrary challenges, potentially introducing malicious, incorrect, or misleading content. This issue has been patched in version 2.2.0...

7.6CVSS6.9AI score0.00215EPSS

Exploits0References1

Positive Technologies•added 2025/09/25 12:0 a.m.•4 views

PT-2025-39418

Name of the Vulnerable Software and Affected Versions Flag Forge versions 2.2.0 through 2.3.0 Description Flag Forge improperly manages session invalidation. After a user logs out, they can still access protected endpoints, such as /api/profile, and CSRF tokens remain valid. This allows continued...

9.8CVSS6.6AI score0.00394EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by