CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1773

Malware in sbrugna...

5.3CVSS7.2AI score0.01214EPSS

Exploits1References9

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-0314

Malicious code in bioql PyPI...

7.3CVSS8.3AI score0.01266EPSS

Exploits0References8

IBM Security Bulletins•added 2025/09/30 11:31 a.m.•3 views

Security Bulletin: Due to use of Apache Derby, IBM Operations Analytics - Log Analysis is affected by Improperly Controlled Modification

Summary Package jszip is used by IBM Operations Analytics - Log Analysis as compression in web interface for Apache Derby. CVE-2021-23413. Vulnerability Details CVEID:CVE-2021-23413 DESCRIPTION: This affects the package jszip before 3.7.0. Crafting a new zip file with filenames set to Object...

5.3CVSS6.5AI score0.01214EPSS

Exploits1Affected Software1

Microsoft CVE•added 2023/02/02 8:0 a.m.•2 views

loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.

...

7.3CVSS8AI score0.01266EPSS

Exploits0

vulnersOsv•added 2023/01/29 6:30 a.m.•0 views

-temp-electron-manager-somiibo (=0.0.200), 003-gas-convert (=1.0.1) +20149 more potentially affected by CVE-2022-48285 via jszip (>=0.2.1 <=3.7.1)

jszip NPM version =0.2.1, =0.2.13, =1.0.0, =4.3.4, =1.0.0, =1.0.4 - 3llm =0.0.1 - 3vot-clay =2.0.1 - 4xx =0.0.1 - 5-ifc-check-cli =1.0.0 and more Source cves: CVE-2022-48285 Source advisory: OSV:GHSA-36FH-84J7-CV5H...

7.3CVSS6.7AI score0.01266EPSS

Exploits0

OSV•added 2023/01/29 5:15 a.m.•0 views

UBUNTU-CVE-2022-48285

loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive...

7.3CVSS7.2AI score0.01266EPSS

Exploits0References6

CNNVD•added 2023/01/29 12:0 a.m.•1 views

jszip 路径遍历漏洞

jszip is a JavaScript library for creating, reading and editing .zip files. A security vulnerability exists in jszip versions prior to 3.8.0, which stems from allowing directory traversal through a crafted ZIP archive...

7.3CVSS7.9AI score0.01266EPSS

Exploits0References6

vulnersOsv•added 2021/08/10 4:2 p.m.•0 views

-temp-electron-manager-somiibo (=0.0.200), 003-gas-convert (=1.0.1) +17741 more potentially affected by CVE-2021-23413 via jszip (>=3.0.0 <=3.6.0)

jszip NPM version =3.0.0, =0.2.13, =4.3.4, =1.0.0, =1.0.26, =1.0.46 - 66in-components =1.1.181 - 66in-utils =1.0.78 and more Source cves: CVE-2021-23413 Source advisory: OSV:GHSA-JG8V-48H5-WGXG...

5.3CVSS6.4AI score0.01214EPSS

Exploits1

vulnersOsv•added 2021/08/10 4:2 p.m.•1 views

1st-20200429 (=1.1.0), 3vot-clay (=2.0.1) +1815 more potentially affected by CVE-2021-23413 via jszip (>=0.2.1 <=2.6.1)

jszip NPM version =0.2.1, =0.3.1, =4.0.1, =1.0.2, =1.0.0, =1.0.1, =1.4.11-bleeding.0, =0.0.1, =1.0.0, =2.5.1, =0.0.1, =0.1.2 and more Source cves: CVE-2021-23413 Source advisory: OSV:GHSA-JG8V-48H5-WGXG...

5.3CVSS6.4AI score0.01214EPSS

Exploits1

OSV•added 2021/07/25 1:15 p.m.•0 views

UBUNTU-CVE-2021-23413

This affects the package jszip before 3.7.0. Crafting a new zip file with filenames set to Object prototype values e.g proto, toString, etc results in a returned object with a modified prototype instance...

5.3CVSS7.1AI score0.01214EPSS

Exploits1References8

vulnersOsv•added 2021/04/18 1:4 p.m.•1 views

-temp-electron-manager-somiibo (=0.0.200), 003-gas-convert (=1.0.1) +17741 more potentially affected by CVE-2021-23413 via jszip (>=3.0.0 <=3.6.0)

jszip NPM version =3.0.0, =0.2.13, =4.3.4, =1.0.0, =1.0.26, =1.0.46 - 66in-components =1.1.181 - 66in-utils =1.0.78 and more Source cves: CVE-2021-23413 Source advisory: SNYK:JS-JSZIP-1251497...

5.3CVSS6.4AI score0.01214EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by