CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-0167

Malware in sbrugna...

5.3CVSS5.3AI score0.00205EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-5007

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00601EPSS

Exploits0References16

OSV•added 2024/11/22 2:23 p.m.•2 views

OESA-2024-2476 rubygem-sinatra security update

Sinatra is a DSL intended for quickly creating web-applications in Ruby with minimal effort. Security Fixes: Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a...

8.8CVSS7AI score0.00356EPSS

Exploits1References2

Vulnrichment•added 2022/11/28 12:0 a.m.•1 views

CVE-2022-45442 Sinatra vulnerable to Reflected File Download attack

Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is...

8.8CVSS7AI score0.00356EPSS

Exploits1References5

OSV•added 2022/06/11 8:5 a.m.•3 views

SUSE-SU-2022:2046-1 Security update for rubygem-sinatra

This update for rubygem-sinatra fixes the following issues: - CVE-2022-29970: Fixed possible path traversal outside of publicdir when serving static files bsc1199138...

7.5CVSS7.5AI score0.00601EPSS

Exploits0References3