CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5824 matches found

OSSF Malicious Packages•added 2025/09/09 9:59 p.m.•3 views

Malicious code in venomenallib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4f33bd81b0b06fd056a05286d3664de55bbaff5fa8c1a54a07905e8e3b5e596a Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score

Exploits0References1

OSSF Malicious Packages•added 2025/09/09 9:20 p.m.•5 views

Malicious code in denomenallib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 72b314dc6f8d89e09c9bdd5deae5f16e934e6cddcea9958ef20b43d1b7129154 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score

Exploits0References1

OSV•added 2025/09/09 9:20 p.m.•4 views

MAL-2025-191716 Malicious code in denomenallib (PyPI)

6.8AI score

Exploits0References1

Veracode•added 2025/09/09 7:24 a.m.•4 views

Denial Of Service (DoS)

org.bouncycastle, bc-fips is vulnerable to Denial Of Service DoS. The vulnerability is due to excessive allocation in the org.Bouncycastle.Crypto.Fips.NativeLoader module, which allows an attacker to exhaust system resources and cause a denial of service...

1CVSS6.9AI score0.00137EPSS

Exploits0References3Affected Software1

CVE•added 2025/09/09 2:11 a.m.•15 views

CVE-2025-42933

CVE-2025-42933 affects SAP Business One through the SLD backend service, where a flaw in enforcing encryption of certain APIs exposes sensitive credentials in HTTP response bodies. The issue impacts confidentiality, integrity, and availability. CVSS 3.1 base score 8.8 (Network, Low attack complex...

8.8CVSS6.1AI score0.00257EPSS

Exploits0References2

CNNVD•added 2025/09/09 12:0 a.m.•1 views

WordPress plugin Ziston 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.1CVSS6.4AI score0.00393EPSS

Exploits0References2

OSSF Malicious Packages•added 2025/09/08 7:3 p.m.•7 views

Malicious code in kekovayalibka (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 62e5215c3a679298336a19cefc6971dc3ab4d26a68a1ee1b7fdafe97b7d2c8d0 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score

Exploits0References1

OSV•added 2025/09/08 7:3 p.m.•2 views

MAL-2025-191773 Malicious code in kekovayalibka (PyPI)

6.8AI score

Exploits0References1

OSSF Malicious Packages•added 2025/09/06 8:37 p.m.•4 views

Malicious code in xenlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e53ee4ee9935e6502ce16df23a8110b5cccba018b9c0c14279ebabc163e84265 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score

Exploits0References1

OSV•added 2025/09/06 8:37 p.m.•4 views

MAL-2025-191936 Malicious code in xenlib (PyPI)

6.8AI score

Exploits0References1

OSSF Malicious Packages•added 2025/09/05 5:10 p.m.•2 views

Malicious code in antares-native-ablation-soap (npm)

The package antares-native-ablation-soap was found to contain malicious code...

7AI score

Exploits0

OSSF Malicious Packages•added 2025/09/05 5:10 p.m.•3 views