CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-31645

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00569EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 3:34 a.m.•4 views

CVE-2023-27919

Authentication bypass vulnerability in NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series all versions allows a remote unauthenticated attacker to alter the information stored in the system...

5.3CVSS6.6AI score0.00569EPSS

Exploits0References1

NVD•added 2023/05/10 6:15 a.m.•13 views

CVE-2023-27919

Authentication bypass vulnerability in NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series all versions allows a remote unauthenticated attacker to alter the information stored in the system...

5.3CVSS5.3AI score0.00569EPSS

Exploits0References2

Positive Technologies•added 2023/05/10 12:0 a.m.•2 views

PT-2023-21418 · Ec Cube · Next Engine Integration Plugin

Name of the Vulnerable Software and Affected Versions: NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series all versions Description: The issue allows a remote unauthenticated attacker to alter the information stored in the system due to an authentication bypass vulnerability. Recommendations: F...

5.3CVSS5.3AI score0.00569EPSS

Exploits0References3

Vulnrichment•added 2023/05/10 12:0 a.m.•8 views

CVE-2023-27919

Authentication bypass vulnerability in NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series all versions allows a remote unauthenticated attacker to alter the information stored in the system...

5.2AI score0.00569EPSS

Exploits0References2

Cvelist•added 2023/05/10 12:0 a.m.•12 views

CVE-2023-27919

Authentication bypass vulnerability in NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series all versions allows a remote unauthenticated attacker to alter the information stored in the system...

5.5AI score0.00569EPSS

Exploits0References2

CVE•added 2023/05/10 12:0 a.m.•49 views

CVE-2023-27919

CVE-2023-27919 describes an authentication bypass in the NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series) , affecting all versions. The vulnerability allows a remote unauthenticated attacker to alter information stored in the system. The provided documents do not include a published fix or...

5.3CVSS5.2AI score0.00569EPSS

Exploits0References2Affected Software1

Japan Vulnerability Notes•added 2023/04/19 5:6 a.m.•2 views

EC-CUBE plugin "NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series)" vulnerable to authentication bypass

Overview EC-CUBE plugin "NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series" provided by NE Inc. contains an authentication bypass vulnerability CWE-287. TSUKADA Nobuhisa of Seasoft reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early...

5.3CVSS6.8AI score0.00569EPSS

Exploits0References5

Japan Vulnerability Notes•added 2023/04/19 12:0 a.m.•20 views

JVN#50862842: EC-CUBE plugin "NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series)" vulnerable to authentication bypass

EC-CUBE plugin "NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series" provided by NE Inc. contains an authentication bypass vulnerability CWE-287. Impact A remote attacker may alter the information stored in the system. Solution Stop using "NEXT ENGINE Integration Plugin for EC-CUBE 2.0 series "...

5.3CVSS5.4AI score0.00569EPSS

Exploits0

CNNVD•added 2023/04/19 12:0 a.m.•3 views

NEXT ENGINE Integration Plugin 授权问题漏洞

NEXT ENGINE Integration Plugin is an integration plugin from NE Open Source. A security vulnerability exists in NEXT ENGINE Integration Plugin that stems from an authentication bypass vulnerability...

5.3CVSS5.7AI score0.00569EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by