CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/12/23 8:21 a.m.•1 views

MAL-2025-192825 Malicious code in no-use-extend-native (npm)

6.8AI score

OSSF Malicious Packages•added 2025/12/23 8:18 a.m.•5 views

Malicious code in jz-native-js-bridge (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f5be9f16b75f7bf0ca5477443252a99142fcc146e923a7f77862df124ad6ac5 The package jz-native-js-bridge was found to contain malicious code...

7AI score

OSV•added 2025/12/23 8:18 a.m.•2 views

MAL-2025-192817 Malicious code in jz-native-js-bridge (npm)

6.8AI score

Packet Storm•added 2025/12/23 12:0 a.m.•232 views

📄 Open Journal Systems 3.5.0-1 Path Traversal

Open Journal Systems versions 3.5.0-1 and below suffer from a path traversal vulnerability in NativeXmlIssueGalleyFilter.php. --------------------------------------------------------------------------------------------- Open Journal Systems issuegalleys - issuegalley - issuefile - filename tag of...

7AI score

Exploits1

Packet Storm News•added 2025/12/22 12:0 a.m.•7 views

Holoscope: Open and Lightweight Distributed Telescope and Honeypot Platform

The complexity and scale of Internet attacks call for distributed, cooperative observatories capable of monitoring malicious traffic across diverse networks. Holoscope is a lightweight, cloud-native platform designed to simplify the deployment and management of distributed telescope passive and...

6.7AI score

OSV•added 2025/12/21 1:10 a.m.•4 views

MAL-2025-192683 Malicious code in ai-cypher (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5484d32cf20d26ce1585cb1cf90d2ed28c9cf9ccdcf038976a5cec33dd939e4d The compiled native extension hides the code that during import exfiltrates sensitive Telegram files. --- Category: MALICIOUS - The campaign has clearly...

7.1AI score

Exploits0References2

OSSF Malicious Packages•added 2025/12/21 1:10 a.m.•5 views

Malicious code in ai-cypher (PyPI)

7.2AI score

Exploits0References2

CNNVD•added 2025/12/18 12:0 a.m.•3 views

WordPress plugin Etta 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.7AI score0.00415EPSS

CNNVD•added 2025/12/18 12:0 a.m.•2 views

WordPress plugin Emberlyn 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.7AI score0.00445EPSS

CNNVD•added 2025/12/18 12:0 a.m.•0 views

WordPress plugin Rentic 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.6AI score0.00445EPSS

8.1CVSS6.6AI score0.00445EPSS

WordPress plugin The Flash 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability exists in...

WordPress plugin Playful 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

CNNVD•added 2025/12/18 12:0 a.m.•0 views

WordPress plugin Integro 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

CNNVD•added 2025/12/18 12:0 a.m.•0 views

WordPress plugin Neptunus 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

WordPress plugin Panda 安全漏洞

WordPress plugin Winger 安全漏洞

CNNVD•added 2025/12/18 12:0 a.m.•3 views

WordPress plugin DetailX 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

CNNVD•added 2025/12/18 12:0 a.m.•2 views

WordPress plugin Pubzinne 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

CNNVD•added 2025/12/18 12:0 a.m.•3 views

WordPress plugin Anchor smooth scroll 安全漏洞