CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

EUVD•added yesterday•5 views

EUVD-2025-210258

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS5.3AI score

Exploits0References2

NVD•added yesterday•3 views

CVE-2025-69127

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS

Exploits0References1

Cvelist•added yesterday•20 views

CVE-2025-69127 WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS

Exploits0References1

Patchstack•added 2026/05/26 7:51 a.m.•5 views

WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Plumbing versions = 1.6...

5.8AI score

Exploits0Affected Software1

Fedora•added 2026/05/15 3:6 a.m.•8 views

[SECURITY] Fedora 43 Update: GitPython-3.1.50-1.fc43

GitPython is a python library used to interact with git repositories, high-level like git-porcelain, or low-level like git-plumbing. It provides abstractions of git objects for easy access of repository data, a nd additionally allows you to access the git repository more directly using eith er a...

8.8CVSS5.8AI score0.00719EPSS

Exploits1

Fedora•added 2026/05/02 2:12 a.m.•5 views

[SECURITY] Fedora 44 Update: GitPython-3.1.49-1.fc44

5.8AI score

Exploits0

Positive Technologies•added 2026/04/28 12:0 a.m.•3 views

PT-2026-35797

OpenClaw before 2026.4.8 fails to remove git plumbing environment variables from the execution environment before host exec operations. Attackers can exploit this by setting GIT DIR and related variables to redirect git operations and compromise repository integrity...

5.8CVSS5.5AI score0.00115EPSS

Exploits0References6

OSV•added 2026/04/09 8:28 p.m.•1 views

GHSA-CM8V-2VH9-CXF3 OpenClaw: GIT_DIR and related git plumbing env vars missing from exec env denylist (GHSA-m866-6qv5-p2fg variant)

Impact GITDIR and related git plumbing env vars missing from exec env denylist GHSA-m866-6qv5-p2fg variant. Git plumbing environment variables were not removed before host exec and could redirect Git operations. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenCla...

5.3CVSS5.8AI score0.00115EPSS

Exploits0References5

Github Security Blog•added 2026/04/09 8:28 p.m.•5 views

OpenClaw: GIT_DIR and related git plumbing env vars missing from exec env denylist (GHSA-m866-6qv5-p2fg variant)

6.1CVSS5.9AI score0.00115EPSS

Exploits0References5Affected Software1

Openbugbounty•added 2024/04/11 5:31 p.m.•6 views

kershawplumbingheating.co.uk Cross Site Scripting vulnerability OBB-3917353

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

Openbugbounty•added 2024/03/21 1:12 a.m.•2 views

jetsetplumbing.com.au Cross Site Scripting vulnerability OBB-3881693

6.2AI score

Exploits0

Openbugbounty•added 2024/02/08 12:24 p.m.•13 views

monroeplumbing.com Cross Site Scripting vulnerability OBB-3850754

6.2AI score

Exploits0

Openbugbounty•added 2024/01/31 10:52 a.m.•4 views

artplumbingandac.com Cross Site Scripting vulnerability OBB-3846619