CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6574 matches found

RedhatCVE•added 2025/05/22 10:10 p.m.•4 views

CVE-2022-2777

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.1...

6.6CVSS5.9AI score0.00393EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:9 p.m.•7 views

CVE-2022-3292

Use of Cache Containing Sensitive Information in GitHub repository ikus060/rdiffweb prior to 2.4.8...

4.6CVSS6.8AI score0.00493EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:8 p.m.•8 views

CVE-2022-2290

Cross-site Scripting XSS - Reflected in GitHub repository zadam/trilium prior to 0.52.4, 0.53.1-beta...

6.4CVSS6.1AI score0.02568EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:7 p.m.•5 views

CVE-2022-3456

Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...

9.8CVSS6.8AI score0.00345EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:6 p.m.•6 views

CVE-2022-3250

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.6...

5.3CVSS6.8AI score0.00385EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:5 p.m.•7 views

CVE-2022-0405

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16...

4.3CVSS6.8AI score0.00747EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:2 p.m.•4 views

CVE-2022-0950

Unrestricted Upload of File with Dangerous Type in GitHub repository star7th/showdoc prior to 2.10.4...

6.5CVSS6.8AI score0.00625EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:2 p.m.•5 views

CVE-2022-0954

Multiple Stored Cross-site Scripting XSS Vulnerabilities in Shop's Other Settings, Shop's Autorespond E-mail Settings and Shops' Payments Methods in GitHub repository microweber/microweber prior to 1.2.11...

6.8CVSS6AI score0.03197EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:2 p.m.•6 views

CVE-2022-0820

Cross-site Scripting XSS - Stored in GitHub repository orchardcms/orchardcore prior to 1.3.0...

6.1CVSS6AI score0.00728EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:56 p.m.•13 views

CVE-2022-24813

CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. Without the patch for this issue, anonymous comments can be made using Special:RequestWikiQueue when sent directly via POST. A patch for this issue is available in the master branch of CreateWiki's GitHub repository...

5.3CVSS6.8AI score0.00969EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 9:54 p.m.•17 views

CVE-2022-2300

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.2.19...

6.3CVSS5.9AI score0.00456EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:13 p.m.•9 views

CVE-2021-3967

Improper Access Control in GitHub repository zulip/zulip prior to 4.10...

8.8CVSS6.8AI score0.00848EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:46 p.m.•6 views

CVE-2021-4103

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 1.0.34...

6.8CVSS5.9AI score0.00664EPSS

Exploits1

RedhatCVE•added 2025/05/22 6:43 p.m.•6 views

CVE-2021-4043

NULL Pointer Dereference in GitHub repository gpac/gpac prior to 1.1.0...

5.8CVSS6.9AI score0.0481EPSS

Exploits2

RedhatCVE•added 2025/05/22 8:33 a.m.•9 views

CVE-2019-14957

The JetBrains Vim plugin before version 0.52 was storing individual project data in the global vimsettings.xml file. This xml file could be synchronized to a publicly accessible GitHub repository...

5.3CVSS6.8AI score0.0108EPSS

Exploits0References1

Veracode•added 2025/05/16 2:5 p.m.•5 views

Cross-site Scripting (XSS)

github.com/lf-edge/ekuiper is vulnerable to cross-site scripting XSS. The vulnerability is due to improper input sanitization due to injection of malicious scripts in the confKey parameter of the Connection Configuration, which are executed in the browser when accessed by another user...

6.3CVSS6.7AI score0.00242EPSS

Exploits1References4Affected Software1

OSV•added 2025/05/15 8:0 p.m.•5 views

GO-2025-3686 Babylon Finality Provider `MsgCommitPubRandList` replay attack in github.com/babylonlabs-io/babylon

Babylon Finality Provider MsgCommitPubRandList replay attack in github.com/babylonlabs-io/babylon...

7.1AI score

Exploits0References1

OSV•added 2025/05/15 8:0 p.m.•7 views

GO-2025-3688 Yggdrasil Vulnerable to Local Privilege Escalation in github.com/redhatinsights/yggdrasil

Yggdrasil Vulnerable to Local Privilege Escalation in github.com/redhatinsights/yggdrasil...

7.8CVSS6.7AI score0.00153EPSS

Exploits0References6

OSV•added 2025/05/15 8:0 p.m.•4 views

GO-2025-3684 Cosmos EVM Allows Partial Precompile State Writes in github.com/cosmos/evm

Cosmos EVM Allows Partial Precompile State Writes in github.com/cosmos/evm...

7.1AI score

Exploits0References3

OSV•added 2025/05/15 8:0 p.m.•5 views

GO-2025-3680 OPKSSH Vulnerable to Authentication Bypass in github.com/openpubkey/opkssh

OPKSSH Vulnerable to Authentication Bypass in github.com/openpubkey/opkssh...

9.8CVSS6.6AI score0.00295EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by