CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

261 matches found

Github Security Blog•added 2026/02/11 2:23 p.m.•9 views

Leaky JWTs in OpenMetadata exposing highly-privileged bot users

Summary Calls issued by the UI against /api/v1/ingestionPipelines leak JWTs used by ingestion-bot for certain services Glue / Redshift / Postgres Details Any read-only user can gain access to a highly privileged account, typically which has the Ingestion Bot Role. This enables destructive changes...

7.6CVSS5.5AI score0.00018EPSS

Exploits1References4Affected Software1

Fedora•added 2025/11/29 5:8 p.m.•3 views

[SECURITY] Fedora 42 Update: migrate-4.19.0-1.fc42

Go database migrations library and program. This package is built with the following databases backends: cassandra cockroachdb mongodb mysql postgres redshift sqlite3 sqlite This package is built with the following source backends: github gitlab go-bindata godoc-vfs gcs iofs pkger s3...

7.5CVSS7.2AI score0.00042EPSS

Fedora•added 2025/11/29 4:49 p.m.•4 views

[SECURITY] Fedora 43 Update: migrate-4.19.0-1.fc43

Go database migrations library and program. This package is built with the following databases backends: cassandra cockroachdb mongodb mysql postgres redshift sqlite3 sqlite This package is built with the following source backends: github gitlab go-bindata godoc-vfs gcs iofs pkger s3...

7.5CVSS6.8AI score0.00042EPSS

NVD•added 2025/11/19 4:15 p.m.•9 views

CVE-2025-10702

Improper Control of Generation of Code 'Code Injection' vulnerability in Progress DataDirect Connect for JDBC drivers, Progress DataDirect Open Access JDBC driver and Hybrid Data Pipeline allows Remote Code Inclusion. The SpyAttribute connection option implemented by the DataDirect Connect for JD...

8.6CVSS0.00111EPSS

Exploits0References1

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175838

Malicious code in umbra-farout-barnard-redshift npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-178189

Malicious code in kinetic-ora-bootstrap-redshift npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-176759

Malicious code in redshift-sagitta-geodynamo-planckscale npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179456

Malicious code in css-minimizer-webpack-plugin-vuetify-ichnology-redshift npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-176762

Malicious code in redshift-deimos-neptune-yakutsk npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-176761

Malicious code in redshift-nebula-cz-conventional-changelog-fornax npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-179408

Malicious code in dagda-pulsar-redshift-remark npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-176895

Malicious code in puppeteer-geckodriver-redshift-eslint-config npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-177656

Malicious code in neptune-redshift-semantic-release-xml npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-179980

Malicious code in boson-fornax-redshift-andromeda npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-177523

Malicious code in nova-singularitarianism-warp-redshift npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-178926

Malicious code in fermiparadox-redshift-rollup-plugin-phoebe npm...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-189587 Malicious code in solarnebula-testcafe-redshift-isostasy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66a15c52af2d5e39295813eaff4bd1238055cd3382c46f9dbad1c88557512906 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-177794

Malicious code in mocha-eventhoriz-wavefunction-redshift npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-178187

Malicious code in kinetic-redshift-pino-pretty-prettier-plugin-markdown npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-176288

Malicious code in solarnebula-testcafe-redshift-isostasy npm...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by