CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2026/01/01 4:9 a.m.•4 views

CVE-2025-15373

A security vulnerability has been detected in EyouCMS up to 1.7.7. Impacted is the function saveRemote of the file application/function.php. Such manipulation leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be use...

6.5CVSS6.6AI score0.00022EPSS

Exploits1References1

Positive Technologies•added 2025/12/31 12:0 a.m.•1 views

PT-2025-54271

6.5CVSS6.6AI score0.00022EPSS

Exploits1References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-37591

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00045EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 11:5 p.m.•3 views

CVE-2022-34639

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application...

5.5CVSS7AI score0.00045EPSS

Exploits1References1

Vulnrichment•added 2025/05/20 12:0 a.m.•5 views

CVE-2025-44893

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the ruleNamekey parameter in the webaclmgmtRulesApplypost function...

7.8AI score0.00424EPSS

Exploits1References3

Positive Technologies•added 2023/05/17 12:0 a.m.•3 views

PT-2023-2925

Name of the Vulnerable Software and Affected Versions Weaver e-cology versions up to 9.0 Description A problematic vulnerability was found in the RequestInfoByXml function of the API component, leading to xml external entity reference. This issue is related to incorrect restriction of XML links t...

8.8CVSS6AI score0.00054EPSS

Exploits1References9

NVD•added 2023/04/11 3:15 a.m.•13 views

CVE-2023-27897

In SAP CRM - versions 700, 701, 702, 712, 713, an attacker who is authenticated with a non-administrative role and a common remote execution authorization can use a vulnerable interface to execute an application function to perform actions which they would not normally be permitted to perform...

6.3CVSS6.3AI score0.01317EPSS

Exploits0References2

NVD•added 2023/03/14 6:15 a.m.•11 views

CVE-2023-27893

An attacker authenticated as a user with a non-administrative role and a common remote execution authorization in SAP Solution Manager and ABAP managed systems ST-PI - versions 20881700, 20081710, 740, can use a vulnerable interface to execute an application function to perform actions which they...

8.8CVSS8.7AI score0.05126EPSS

Exploits0References2

ATTACKERKB•added 2022/07/18 11:15 p.m.•1 views

CVE-2022-34639

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application...

5.5CVSS5.9AI score0.00045EPSS

Exploits1References3

OSV•added 2022/07/18 11:15 p.m.•0 views

CVE-2022-34639

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application...

5.5CVSS5.8AI score0.00045EPSS

Exploits1References2

Prion•added 2022/07/18 11:15 p.m.•10 views

Design/Logic Flaw

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a treats non-standard fence instructions as illegal which can affect the function of the application...

1.7CVSS5.6AI score0.00045EPSS

Exploits1References2