CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6484 matches found

EUVD•added 2025/11/18 10:32 p.m.•4 views

EUVD-2025-198099

Emby Server is a personal media server. Prior to version 4.8.1.0 and prior to Beta version 4.9.0.0-beta, a malicious user can send an authentication request with a manipulated X-Emby-Client value, which gets added to the devices section of the admin dashboard without sanitization. This issue has...

8.4CVSS6.4AI score0.00066EPSS

Exploits1References1

GithubExploit•added 2025/11/18 2:24 p.m.•189 views

Exploit for Double Free in Openbsd Openssh

CVE-2023-25136 Vulnerability Demonstration This project provi...

6.5CVSS7.6AI score0.88329EPSS

CVE•added 2025/11/17 12:0 a.m.•27 views

CVE-2025-65073

OpenStack Keystone prior to 26.0.1, 27.0.0, or 28.0.0 is vulnerable to requests to /v3/ec2tokens or /v3/s3tokens bearing a valid AWS Signature that can authorize access. The issue (CVE-2025-65073) enables unauthorized access and potential privilege escalation. CVSS v3.1 base score 7.5 (Network, h...

7.5CVSS6.5AI score0.00031EPSS

Exploits0References2

Cvelist•added 2025/11/15 8:4 a.m.•4 views

CVE-2025-7736 Incorrect Authorization in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.9 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated attacker to bypass access control restrictions and view GitLab Pages content intended only for project members by...

3.1CVSS0.00013EPSS

Exploits0References3

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-176206

Malicious code in stop-auth-epigenetics-neutronstar npm...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-189608 Malicious code in spectron-grunt-auth-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6cbd342d4b73f3ab91a46f07b5ec0f8fb7ea8893422949f32cb9b9cae1c1dc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-180344

Malicious code in arcturus-iota-auth-blaze npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-180307

Malicious code in asthenosphere-auth-andromeda-gacrux npm...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-186843 Malicious code in eslint-plugin-fornax-auth-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be26c82a94b33272a9b5391a0f7fe3a8cb9d572639e42301d598f6ff497f416c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175439

Malicious code in yonder-less-loader-ini-auth npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•6 views

Malicious code in spectron-grunt-auth-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6cbd342d4b73f3ab91a46f07b5ec0f8fb7ea8893422949f32cb9b9cae1c1dc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•3 views

EUVD-2025-177952

Malicious code in markdown-pdf-auth-neptune-optimize-css-assets-webpack-plugin npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•3 views

Malicious code in mui-auth-betelgeuse-xo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0b2fd7a8c638947ae3bfc4c81fb4a2b89e7cee50538831189f80aab8974dcde This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•3 views

Malicious code in xerxes-auth-jekyll-ionosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51ad4f9df284c5088fa33be03291602f134c74a08bde68bd1d24c3220134e5cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in eslint-plugin-fornax-auth-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be26c82a94b33272a9b5391a0f7fe3a8cb9d572639e42301d598f6ff497f416c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•3 views

Malicious code in yonder-less-loader-ini-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64d24be310a09fbc0c9ea69c806f48c32bc74d179f2b3b70aedfed17bb573b41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-186212 Malicious code in comet-auth-html-webpack-plugin-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f5b037c3a10e0eb5d63054a411dd6a2daeb791121c669593b5602687a52454b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175493

Malicious code in xerxes-auth-jekyll-ionosphere npm...

EUVD•added 2025/11/13 3:23 a.m.•3 views

EUVD-2025-177385

Malicious code in paleoanthropology-helios-auth-panspermia npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179670

Malicious code in comet-auth-html-webpack-plugin-request npm...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by