CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6753 matches found

Positive Technologies•added 2025/10/14 12:0 a.m.•4 views

PT-2025-41895

Name of the Vulnerable Software and Affected Versions B Automation Runtime versions prior to 6.4 Description A flaw exists in the System Diagnostics Manager SDM component of B Automation Runtime that allows for improper neutralization of formula elements within a CSV file. This can be exploited b...

6.1CVSS6.4AI score0.00288EPSS

Exploits0References3

RedhatCVE•added 2025/10/12 9:23 a.m.•5 views

CVE-2025-11254

The Contest Gallery – Upload, Vote & Sell with PayPal and Stripe plugin for WordPress is vulnerable to CSV Injection in all versions up to, and including, 27.0.3 via gallery submissions. This makes it possible for unauthenticated attackers to embed untrusted input into exported CSV files, which c...

4.3CVSS6.9AI score0.00312EPSS

Exploits0References1

Cvelist•added 2025/10/11 8:29 a.m.•8 views

CVE-2025-11254 Contest Gallery – Upload, Vote & Sell with PayPal and Stripe <= 27.0.3 - Unauthenticated CSV Injection

4.3CVSS0.00312EPSS

Exploits0References3

Positive Technologies•added 2025/10/11 12:0 a.m.•5 views

PT-2025-41648

Name of the Vulnerable Software and Affected Versions The Contest Gallery – Upload, Vote & Sell with PayPal and Stripe plugin for WordPress versions prior to 27.0.4 Description The software is susceptible to CSV Injection through gallery submissions. This allows unauthenticated attackers to embed...

4.3CVSS7.3AI score0.00312EPSS

Exploits0References7

CNNVD•added 2025/10/11 12:0 a.m.•1 views

WordPress plugin Contest Gallery – Upload, Vote & Sell with PayPal and Stripe 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS7.2AI score0.00312EPSS

Exploits0References3

CNNVD•added 2025/10/10 12:0 a.m.•9 views

Julia HTTP.jl 注入漏洞

Julia HTTP.jl is a Julia open source HTTP protocol for Julia. An injection vulnerability exists in Julia HTTP.jl versions prior to 1.10.19, which stems from illegal characters in unvalidated header names and values, and could lead to HTTP response splitting and header injection attacks...

9.2CVSS6.9AI score0.00311EPSS

Exploits0References2

Tenable Nessus•added 2025/10/08 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-4460

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix UBSAN shift-out-of- bounds warning If getnumsdmaqueues or getnumxgmisdmaqueu...

7.1CVSS5.8AI score0.0015EPSS

Exploits0References3