CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-13506

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00147EPSS

Exploits1References2

RedhatCVE•added 2025/05/07 7:14 p.m.•9 views

CVE-2025-46559

Misskey is an open source, federated social media platform. Starting in version 12.31.0 and prior to version 2025.4.1, missing validation in Mk:api allows malicious AiScript code to access additional endpoints that it isn't designed to have access to. The missing validation allows malicious...

7.5CVSS7AI score0.00147EPSS

Exploits1References1

NVD•added 2025/05/05 7:15 p.m.•9 views

CVE-2025-46559

7.5CVSS0.00147EPSS

Exploits1References2

Vulnrichment•added 2025/05/05 6:38 p.m.•6 views

CVE-2025-46559 Misskey Directory Traversal Vulnerability in AiScript via `Mk:api`

5.4CVSS5.5AI score0.00147EPSS

Exploits1References2

Cvelist•added 2025/05/05 6:38 p.m.•12 views

CVE-2025-46559 Misskey Directory Traversal Vulnerability in AiScript via `Mk:api`

5.4CVSS0.00147EPSS

Exploits1References2

CVE•added 2025/05/05 6:38 p.m.•49 views

CVE-2025-46559

CVE-2025-46559 is a Misskey directory traversal vulnerability. In Misskey versions 12.31.0 through 2025.4.0, missing validation in Mk:api lets AiScript prefix a URL with ".." to escape the /api path, enabling requests to endpoints such as /files, /url, and /proxy. The issue is fixed in version 20...

7.5CVSS5.5AI score0.00147EPSS

Exploits1References2Affected Software1

OSV•added 2025/05/05 6:38 p.m.•6 views

CVE-2025-46559 Misskey Directory Traversal Vulnerability in AiScript via `Mk:api`

5.4CVSS7AI score0.00147EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by