CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-6187

Malware in sbrugna...

6.1CVSS6.3AI score0.00176EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2001-0891

Malware in sbrugna...

7.5CVSS6.4AI score0.0064EPSS

Exploits0References4

Gitee•added 2025/09/06 12:36 a.m.•76 views

log4jScanner

This is a tool for scanning internal subnets for vulnerable log4j web services. It sends a JNDI payload to each discovered web service on common HTTP/S ports and logs the responding host IP. The tool does not send any exploits to the vulnerable hosts and is designed to be as passive as possible...

6.8AI score

Exploits0

RedhatCVE•added 2025/05/22 8:9 a.m.•5 views

CVE-2019-15116

The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging...

6.1CVSS6.2AI score0.00176EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 9:32 p.m.•4 views

CVE-2005-3176

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not record the IP address of a Windows Terminal Services client in a security log event if the client connects successfully, which could make it easier for attackers to escape detection...

7.5CVSS6.9AI score0.13714EPSS

Exploits0References1

Vulnrichment•added 2024/12/27 12:0 a.m.•6 views

CVE-2024-54450

An issue was discovered in Kurmi Provisioning Suite 7.9.0.33. If an X-Forwarded-For header is received during authentication, the Kurmi application will record the possibly forged IP address mentioned in that header rather than the real IP address that the user logged in from. This fake IP addres...

6.7AI score0.00235EPSS

Exploits0References2

RedHat Linux•added 2024/11/12 9:14 a.m.•3 views

go-retryablehttp: url might write sensitive information to log file

A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information...

6CVSS7.1AI score0.00045EPSS

Exploits0References4

CNNVD•added 2022/08/29 12:0 a.m.•1 views

FiberHome VDSL2 Modem HG150-Ub 安全漏洞

The FiberHome VDSL2 Modem HG150-Ub is a piece of router equipment from FiberHome. A security vulnerability exists in the FiberHome VDSL2 Modem HG150-UbV3.0 version, which stems from the fact that an administrator's credentials can be submitted in a URL and can be logged, sniffed, and sniffed...

7.5CVSS6.8AI score0.00231EPSS

Exploits1References3

NVD•added 2019/08/16 9:15 p.m.•9 views

CVE-2019-15116

The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging...

6.1CVSS6.1AI score0.00176EPSS

Exploits0References2

OSV•added 2019/08/16 9:15 p.m.•0 views

CVE-2019-15116

The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging...

6.1CVSS5.8AI score0.00176EPSS

Exploits0References2

Prion•added 2019/08/16 9:15 p.m.•13 views

Design/Logic Flaw

The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging...

4.3CVSS6AI score0.00176EPSS

Exploits0References2Affected Software1

CVE•added 2019/08/16 8:12 p.m.•381 views

CVE-2019-15116

CVE-2019-15116 affects the WordPress Easy Digital Downloads plugin prior to version 2.9.16. The vulnerability is a cross-site scripting (XSS) flaw associated with how IP addresses are logged, and multiple sources describe it as stored XSS. Impact is client-side script execution when vulnerable da...

6.1CVSS6AI score0.00176EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/08/16 8:12 p.m.•12 views

CVE-2019-15116

The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging...

6.1AI score0.00176EPSS

Exploits0References2

Positive Technologies•added 2019/08/16 12:0 a.m.•2 views

PT-2019-13996 · WordPress · Easy Digital Downloads

Name of the Vulnerable Software and Affected Versions: easy-digital-downloads plugin versions prior to 2.9.16 Description: The issue is related to cross-site scripting XSS in the context of IP address logging. This means an attacker could potentially inject malicious scripts into the website,...

6.1CVSS6AI score0.00176EPSS

Exploits0References5

CVE•added 2007/11/01 5:0 p.m.•35 views

CVE-2002-2423

CVE-2002-2423 affects Sendmail versions 8.12.0 through 8.12.6. The vulnerability arises because log messages longer than 100 characters are truncated, allowing a remote attacker to prevent the IP address from being logged via a long IDENT response. The connected Red Hat entry and other CVE record...

6.4CVSS7AI score0.003EPSS

Exploits0References3Affected Software1

NVD•added 2004/04/07 4:0 a.m.•14 views

CVE-2004-1357

The Secure Shell SSH Daemon SSHD in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide the source of their activities...

5CVSS6.6AI score0.04977EPSS

Exploits0References7

NVD•added 2002/12/31 5:0 a.m.•6 views

CVE-2002-2423

Sendmail 8.12.0 through 8.12.6 truncates log messages longer than 100 characters, which allows remote attackers to prevent the IP address from being logged via a long IDENT response...

6.4CVSS6.6AI score0.003EPSS

Exploits0References3

Cvelist•added 2002/02/02 5:0 a.m.•19 views

CVE-2001-0908

CITRIX Metaframe 1.8 logs the Client Address IP address that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation NAT...

6.5AI score0.0064EPSS

Exploits0References3

NVD•added 2001/11/21 5:0 a.m.•15 views

CVE-2001-0908

7.5CVSS6.5AI score0.0064EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by