CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In Ankitects Anki prior to 25.02.5, a crafted shared deck can place a YouTube downloader executable (names include youtube-dl.exe, yt-dlp.exe, or yt-dlp_x86.exe) in the media folder. This executable can be run when a YouTube link is present in the deck, enabling potential arbitrary code execution...

7.8CVSS6.4AI score0.00013EPSS

Exploits0References3Affected Software1

Cvelist•added 2025/10/07 12:0 a.m.•5 views

CVE-2025-62185

In Ankitects Anki before 25.02.5, a crafted shared deck can place a YouTube downloader executable in the media folder, and this is executed for a YouTube link in the deck. The executable name could be youtube-dl.exe or yt-dlp.exe or yt-dlpx86.exe...

6.7CVSS0.00013EPSS

Exploits0References3

Positive Technologies•added 2025/10/07 12:0 a.m.•4 views

PT-2025-41187

Name of the Vulnerable Software and Affected Versions Anki versions prior to 25.02.5 Description A specially designed shared deck can place a YouTube downloader executable in the media folder. This executable is then run when a YouTube link is present within the deck. The executable may be named...

7.8CVSS6.6AI score0.00013EPSS

Exploits0References7

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: gdb (UTSA-2025-984798)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984798 advisory. GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfddwarf2findnearestlinewithalt at dwarf2.c. The...

5.5CVSS5.8AI score0.00009EPSS

Exploits1References4

EUVD•added 2025/10/07 12:0 a.m.•2 views

EUVD-2025-32879

6.7CVSS6.3AI score0.00013EPSS

Exploits0References3

Packet Storm•added 2025/10/06 12:0 a.m.•120 views

📄 Mac OS X Persistent Payload Installer

This Metasploit module provides a persistent boot payload by creating a launch item, which can be a LaunchAgent or a LaunchDaemon. LaunchAgents run with user level permissions and are triggered upon login by a plist entry in /Library/LaunchAgents. LaunchDaemons run with elevated privileges, and a...

6.9AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48200

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00119EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-29122

Malicious code in bioql PyPI...

4.9CVSS6.6AI score0.00097EPSS

Exploits0References3