CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

129 matches found

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-19284

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00215EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•7 views

EUVD-2023-39809

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00388EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-26720

Malicious code in bioql PyPI...

10CVSS9.2AI score0.00755EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-8604

Malicious code in bioql PyPI...

6.5CVSS9AI score0.00179EPSS

Exploits0References2

RedhatCVE•added 2025/06/29 12:6 p.m.•13 views

CVE-2025-47654

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms formlift allows Reflected XSS.This issue affects FormLift for Infusionsoft Web Forms: from n/a through = 7.5.20...

7.1CVSS5.9AI score0.00215EPSS

Exploits0References1

NVD•added 2025/06/27 12:15 p.m.•4 views

CVE-2025-47654

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms formlift allows Reflected XSS.This issue affects FormLift for Infusionsoft Web Forms: from n/a through = 7.5.20...

7.1CVSS0.00215EPSS

Exploits0References1

Vulnrichment•added 2025/06/27 11:52 a.m.•3 views

CVE-2025-47654 WordPress FormLift for Infusionsoft Web Forms plugin <= 7.5.20 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms allows Reflected XSS. This issue affects FormLift for Infusionsoft Web Forms: from n/a through 7.5.20...

7.1CVSS7.2AI score0.00215EPSS

Exploits0References1

Cvelist•added 2025/06/27 11:52 a.m.•11 views

CVE-2025-47654 WordPress FormLift for Infusionsoft Web Forms plugin <= 7.5.20 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms formlift allows Reflected XSS.This issue affects FormLift for Infusionsoft Web Forms: from n/a through = 7.5.20...

7.1CVSS0.00215EPSS

Exploits0References1

Tenable Nessus•added 2025/05/30 12:0 a.m.•12 views

ConnectWise ScreenConnect < 25.2.4 RCE

According to its version, the ConnectWise ScreenConnect remote access software installed on the remote host is prior to 25.2.4. It is, therefore affected by a remote code execution vulnerability: - ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection...

8.1CVSS9.4AI score0.03348EPSS

Exploits0References2

RedhatCVE•added 2025/04/30 12:16 a.m.•28 views

CVE-2023-35814

DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...

9.8CVSS7AI score0.00388EPSS

Exploits0References7

OSV•added 2025/04/28 4:15 p.m.•7 views

CVE-2023-35814

DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...

9.8CVSS5.8AI score0.00388EPSS

Exploits0References5

NVD•added 2025/04/28 4:15 p.m.•29 views

CVE-2023-35814

DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...

9.8CVSS0.00388EPSS

Exploits0References5

Cvelist•added 2025/04/28 12:0 a.m.•29 views

CVE-2023-35814

DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...

3.5CVSS0.00388EPSS

Exploits0References5

Vulnrichment•added 2025/04/28 12:0 a.m.•12 views

CVE-2023-35814

DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...

3.5CVSS4AI score0.00388EPSS

Exploits0References5

CVE•added 2025/04/28 12:0 a.m.•93 views

CVE-2023-35814

DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET Web Forms. Affects DevExpress XtraReport serialization handling prior to version 23.1.3; impacts confidentiality, integrity and availability as per listed CVSS details. Remediation: upgrade to version 23.1.3 ...

9.8CVSS7AI score0.00388EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2025/04/27 7:11 p.m.•18 views

CVE-2025-3935

ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection attack. ASP.NET Web Forms use ViewState to preserve page and control state, with data encoded using Base64 protected by machine keys. It is important to note that to obtain these machine keys,...

8.1CVSS8AI score0.03348EPSS

Exploits0References1

CVE•added 2025/04/25 6:27 p.m.•306 views

CVE-2025-3935

CVE-2025-3935 affects ScreenConnect 25.2.3 and earlier, where ViewState code injection can enable remote code execution if machine keys are compromised. The vulnerability stems from platform-level ViewState handling in ASP.NET Web Forms rather than a ScreenConnect flaw. ScreenConnect 2025.4 patch...

8.1CVSS8.5AI score0.03348EPSS

In wildExploits0References3Affected Software1

RedhatCVE•added 2025/03/30 12:36 p.m.•18 views

CVE-2025-31434

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms formlift allows Stored XSS.This issue affects FormLift for Infusionsoft Web Forms: from n/a through = 7.5.19...

6.5CVSS7.2AI score0.00179EPSS

Exploits0References1

Patchstack•added 2025/03/28 12:54 p.m.•3 views

WordPress FormLift for Infusionsoft Web Forms plugin <= 7.5.19 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin FormLift for Infusionsoft Web Forms versions = 7.5.19...

6.5CVSS6.2AI score0.00179EPSS

Exploits0Affected Software1

Cvelist•added 2025/03/28 11:54 a.m.•13 views

CVE-2025-31434 WordPress FormLift for Infusionsoft Web Forms plugin <= 7.5.19 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms formlift allows Stored XSS.This issue affects FormLift for Infusionsoft Web Forms: from n/a through = 7.5.19...

6.5CVSS0.00179EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by