CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

CVE-2026-54665

Apache NiFi 0.0.1 through 2.9.0 support building qualified URLs from one of several HTTP request headers that provide an alternative to the standard Host header without validating the values provided. Apache NiFi 1.6.0 introduced a configurable application property to restrict values provided in...

6.3CVSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-0825

Malware in sbrugna...

4.3CVSS9.2AI score0.01261EPSS

Exploits0References11

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2006-6413

Malware in sbrugna...

7.8CVSS6.4AI score0.01471EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-4369

Malware in sbrugna...

9.8CVSS9.2AI score0.00678EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-0235

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01149EPSS

Exploits0References5

RedhatCVE•added 2025/05/22 3:7 p.m.•7 views

CVE-2020-7904

In JetBrains IntelliJ IDEA before 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS...

7.4CVSS6.9AI score0.01418EPSS

Exploits0References1

UbuntuCve•added 2015/04/01 12:0 a.m.•36 views

CVE-2015-0812

Mozilla Firefox before 37.0 does not require an HTTPS session for lightweight theme add-on installations, which allows man-in-the-middle attackers to bypass an intended user-confirmation requirement by deploying a crafted web site and conducting a DNS spoofing attack against a mozilla.org subdoma...

4.3CVSS7.1AI score0.01261EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by