CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

69 matches found

RedhatCVE•added 2026/01/09 11:24 a.m.•2 views

CVE-2021-31673

A Dom-based Cross-site scripting XSS vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId parameter...

6.1CVSS6AI score0.02705EPSS

Exploits4References1

Veracode•added 2025/12/13 6:43 a.m.•2 views

SQL Injection

nukeviet/nukeviet is vulnerable to SQL Injection. The vulnerability is due to improper sanitization of the listid parameter in detail.php and the groupprice or groupid parameters in searchresult.php, which allows an attacker to execute malicious SQL queries through crafted input...

9.8CVSS7.4AI score0.00586EPSS

Exploits1References5Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-2474

Malware in sbrugna...

7.5CVSS6.4AI score0.02117EPSS

Exploits0References25

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-11458

Malware in sbrugna...

6.1CVSS6.3AI score0.00234EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-7392

Malware in sbrugna...

9.8CVSS9.5AI score0.02512EPSS

Exploits4References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-2475

Malware in sbrugna...

5CVSS6.4AI score0.01094EPSS

Exploits0References19

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-11487

Malware in sbrugna...

6.1CVSS6.3AI score0.00234EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2018-11497

Malware in sbrugna...

6.1CVSS6.3AI score0.00328EPSS

Exploits2References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-7052

Malicious code in bioql PyPI...

9.4CVSS9.2AI score0.00116EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-31934

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00245EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-28006

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00066EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-9608

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00232EPSS

Exploits0References3

RedhatCVE•added 2025/08/20 1:35 p.m.•3 views

CVE-2025-43732

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.10, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.17 and 7.4 GA through update 92 is vulnerable to Insecure Direct Object Reference IDOR in the...

4.8CVSS6.5AI score0.00066EPSS

Exploits0References1

Snyk•added 2025/08/18 3:30 p.m.•1 views

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the groupId parameter in the EditRolesUsersDisplayContext function. An attacker with administrative privileges can access user lists from other organizations by modifying the groupId...

5.1CVSS7AI score0.00066EPSS

Exploits0References2

OSV•added 2025/08/18 2:15 p.m.•0 views

CVE-2025-43732

2.7CVSS5.8AI score0.00066EPSS

Exploits0References1

Cvelist•added 2025/08/18 1:20 p.m.•5 views

CVE-2025-43732

4.8CVSS0.00066EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:37 p.m.•4 views

CVE-2022-27431

Wuzhicms v4.1.0 was discovered to contain a SQL injection vulnerability via the groupid parameter at /coreframe/app/member/admin/group.php...

9.8CVSS8.3AI score0.00245EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:1 p.m.•7 views

CVE-2020-21809

SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the 1 listid parameter in detail.php and the 2 groupprice or groupid parameters in searchresult.php...

9.8CVSS8.1AI score0.00586EPSS

Exploits1

OSV•added 2025/04/03 2:15 p.m.•5 views

CVE-2025-22930

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the groupid parameter at /messaging/Group.php...

9.8CVSS8.2AI score0.00232EPSS

Exploits0References2