CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-9552

Malware in sbrugna...

3.5CVSS4.6AI score0.00062EPSS

Exploits0References2

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•1 views

Malicious code in chat-api2 (npm)

The package chat-api2 was found to contain malicious code...

7AI score

Exploits0

RedhatCVE•added 2025/05/22 10:55 a.m.•5 views

CVE-2017-18436

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call SEC-239...

3.5CVSS6.8AI score0.00062EPSS

Exploits0References1

OpenVAS•added 2024/03/08 12:0 a.m.•17 views

Fedora: Security Advisory for jaxb-api2 (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.46427EPSS

Exploits3References2

OSV•added 2023/03/24 4:26 a.m.•9 views

MAL-2023-325 Malicious code in fb-chat-api2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f9b51dc190a665e3875553fa564c55b34ab3ac98839656f3033486544d386449 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSSF Malicious Packages•added 2023/03/24 4:26 a.m.•2 views

Malicious code in fb-chat-api2 (npm)

6.9AI score

Exploits0References1

Cvelist•added 2022/12/14 12:0 a.m.•17 views

CVE-2022-31358

A reflected cross-site scripting XSS vulnerability in Proxmox Virtual Environment prior to v7.2-3 allows remote attackers to execute arbitrary web scripts or HTML via non-existent endpoints under path /api2/html/...

8.1AI score0.00874EPSS

Exploits1References4

Positive Technologies•added 2022/12/14 12:0 a.m.•4 views

PT-2022-20714 · Proxmox · Proxmox Virtual Environment

Name of the Vulnerable Software and Affected Versions: Proxmox Virtual Environment versions prior to 7.2-3 Description: A reflected cross-site scripting XSS issue allows remote attackers to execute arbitrary web scripts or HTML via non-existent endpoints under the path "/api2/html/". This enables...

9CVSS8.2AI score0.00874EPSS

Exploits1References8

OSV•added 2019/08/02 5:15 p.m.•0 views

CVE-2017-18440

cPanel before 64.0.21 allows demo users to execute traceroute via api2 SEC-244...

4.3CVSS5.9AI score

Exploits0References2

Prion•added 2019/08/02 5:15 p.m.•14 views

Code injection

cPanel before 64.0.21 allows demo users to execute traceroute via api2 SEC-244...

4CVSS4.9AI score0.00226EPSS

Exploits0References2Affected Software1

Prion•added 2019/08/02 5:15 p.m.•13 views

Code injection

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call SEC-239...

2.7CVSS4.1AI score0.00062EPSS

Exploits0References2Affected Software1

CVE•added 2019/08/02 4:16 p.m.•41 views

CVE-2017-18440

CVE-2017-18440 affects cPanel prior to 64.0.21. The vulnerability allows demo users to execute traceroute via the api2 interface (SEC-244). Impact is limited to information collection via traceroute; no broader impact is stated. Remediation is to upgrade to cPanel 64.0.21 or later, or apply provi...

4.3CVSS4.9AI score0.00226EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/08/02 4:13 p.m.•10 views

CVE-2017-18436

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call SEC-239...

3.9AI score0.00062EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by