CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-19209

Malware in sbrugna...

7.8CVSS8.6AI score0.00292EPSS

Exploits1References24

Veracode•added 2023/12/26 7:13 a.m.•15 views

CSV Injection

Active Admin is vulnerable to CSV Injection. This vulnerability is due to missing sanitization while exporting a CSV file. An attacker can inject malicious data to a CSV file such as =, +, -', @, \t, \r which results in arbitrary macro execution if the csv file is opened in software such as excel...

9.8CVSS6.9AI score0.0016EPSS

Exploits0References3Affected Software1

CVE•added 2019/09/27 3:7 p.m.•287 views

CVE-2019-9853

LibreOffice: CVE-2019-9853 — A URL decoding flaw in how macro URLs are processed and categorized lets an attacker craft a document that bypasses macro security settings, enabling arbitrary macro execution. Affected versions: LibreOffice 6.2 before 6.2.7 and 6.3 before 6.3.1. Remediation: update t...

7.8CVSS8.7AI score0.00292EPSS

Exploits1References17Affected Software1

Cvelist•added 2003/09/04 4:0 a.m.•18 views

CVE-2003-0664

Microsoft Word 2002, 2000, 97, and 98J does not properly check certain properties of a document, which allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document...

7.1AI score0.07251EPSS

Exploits0References2

Cvelist•added 2002/03/09 5:0 a.m.•21 views

CVE-2001-0628

Microsoft Word 2000 does not check AutoRecovery .asd files for macros, which allows a local attacker to execute arbitrary macros with the user ID of the Word user...

7AI score0.01968EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by