CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/08/26 3:15 a.m.•1 views

CVE-2025-9444

9.8CVSS5.8AI score0.00099EPSS

CVE•added 2025/08/26 3:2 a.m.•17 views

CVE-2025-9444

The CVE concerns 1000projects Online Project Report Submission and Evaluation System 1.0. A SQL injection vulnerability exists in the file /admin/controller/delete_group_student.php, triggered by manipulating the batch_id parameter. This remote attack surface could lead to unauthorized data expos...

9.8CVSS7.5AI score0.00099EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2025/08/26 3:2 a.m.•2 views

CVE-2025-9444 1000projects Online Project Report Submission and Evaluation System delete_group_student.php sql injection

7.5CVSS7.6AI score0.00099EPSS

Cvelist•added 2025/08/26 3:2 a.m.•8 views

CVE-2025-9444 1000projects Online Project Report Submission and Evaluation System delete_group_student.php sql injection

7.5CVSS0.00099EPSS

CNNVD•added 2025/08/26 12:0 a.m.•3 views

1000 Projects Online Project Report Submission and Evaluation System Security Vulnerability

1000 Projects Online Project Report Submission and Evaluation System is a 1000 Projects open source online project report submission and evaluation system . 1000 Projects Online Project Report Submission and Evaluation System version 1.0 has a security vulnerability , the vulnerability stems from...

9.8CVSS7.2AI score0.00099EPSS

Exploits1References5

Spring Engineering•added 2025/08/26 12:0 a.m.•4 views

This Week in Spring - August 26th, 2025

Hi, Spring fans! Welcome to another installment of This Week in Spring! I'm writing this from the floor of SpringOne, live from lovely Las Vegas! As you can imagine, I've got to get back into it, so we'll make this one a quick one. And if you're here, be sure to say "hi"! In last week's A Bootifu...

7.1AI score

Positive Technologies•added 2025/08/26 12:0 a.m.•3 views

PT-2025-34732

Name of the Vulnerable Software and Affected Versions: 1000projects Online Project Report Submission and Evaluation System version 1.0 Description: A SQL injection issue exists due to the manipulation of the batch id argument in the processing of the /admin/controller/delete group student.php fil...

7.5CVSS7.2AI score0.00099EPSS

Exploits1References11

Tenable Nessus•added 2025/08/24 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-44945

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink: Initialise extack before use in ACKs Add missing extack initialisation...

7.8CVSS6.5AI score0.00032EPSS

Hacker One•added 2025/08/21 12:32 p.m.•10 views

Monero: Critical Deadlock Vulnerability in Monero RPC Leading to Complete Node Paralysis

A deadlock vulnerability was discovered in the Monero JSON-RPC interface that allowed a remote, unauthenticated attacker to completely paralyze any Monero node with a single HTTP request containing specific batch methods, leading to permanent denial of service. The vulnerability affected all...

5.8AI score

Tenable Nessus•added 2025/08/20 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2019-10195

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way that FreeIPA's batch...

6.5CVSS6.6AI score0.00649EPSS

Tenable Nessus•added 2025/08/19 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38447

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix potential out-of-bounds page table access during batched unmap As pointed out b...

7.1CVSS6.4AI score0.00119EPSS

RedHat Linux•added 2025/08/13 2:49 a.m.•4 views

kernel: drivers:md:fix a potential use-after-free bug

A use-after-free bug exists in the linux kernel such that in the line "raid5releasestripesh;" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines "if sh-batchhead && sh != sh-batchhead" resulting in a minor application crash...

7.8CVSS6.7AI score0.00064EPSS

Exploits0References5

Hacker One•added 2025/08/12 4:32 a.m.•8 views

Bykea: Customer can cancel a individual booking in a batch, causing locking of partner.

The vulnerability allowed users to update the status of individual trips inside a batch, even though only batch-level status changes were intended. By cancelling the single trip inside a one-parcel batch, the batch was placed into an inconsistent state, causing the assigned partner to become stuc...

6.8AI score

Cvelist•added 2025/08/11 9:32 a.m.•8 views

CVE-2025-8840 jshERP Endpoint deleteBatch improper authorization

A vulnerability was determined in jshERP up to 3.5. Affected is an unknown function of the file /jshERP-boot/user/deleteBatch of the component Endpoint. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclos...

5.5CVSS0.00261EPSS

Exploits1References5

Tenable Nessus•added 2025/08/11 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2016-7917

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The nfnetlinkrcvbatch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough...

5CVSS6.3AI score0.00162EPSS

Tenable Nessus•added 2025/08/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2021-26932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of...

5.5CVSS6.7AI score0.00185EPSS

Tenable Nessus•added 2025/08/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21865

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: gtp: Suppress list corruption splat in gtpnetexitbatchrtnl. Brad Spengler reported the listd...

5.5CVSS6.2AI score0.00012EPSS

Tenable Nessus•added 2025/08/08 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2022-48939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: Add schedule points in batch ops syzbot reported various soft lockups caused by bpf bat...

3.3CVSS5.6AI score0.00028EPSS

Exploits0References3

OSV•added 2025/07/31 7:14 p.m.•1 views

MAL-2025-6467 Malicious code in boto3-batch-utils (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score