CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in the Bibliography Biblio module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than...

2.1CVSS5.3AI score0.00232EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 2:38 a.m.•5 views

CVE-2010-1358

2.1CVSS5.5AI score0.00217EPSS

Exploits0References1

NVD•added 2025/05/08 3:15 p.m.•10 views

CVE-2025-45820

Slims Senayan Library Management Systems 9 Bulian 9.6.1 is vulnerable to SQL Injection in admin/modules/bibliography/popauthoredit.php...

6.5CVSS0.00149EPSS

Exploits1References2

CVE•added 2025/05/08 12:0 a.m.•49 views

CVE-2025-45820

CVE-2025-45820 affects Slims (Senayan Library Management Systems) Slims 9 Bulian 9.6.1. The vulnerability is a SQL Injection in the file admin/modules/bibliography/pop_author_edit.php . The available sources consistently cite an injection flaw in that specific path/version; no details on exploit ...

6.5CVSS7.6AI score0.00149EPSS

Exploits1References2Affected Software1

CNNVD•added 2025/05/08 12:0 a.m.•3 views

SLiMS 9 Bulian 安全漏洞

SLiMS 9 Bulian is a free and open source software from the SLiMS community in Indonesia. It is used for library resource management e.g. books, journals, digital files and other library materials and administration. A security vulnerability exists in SLiMS 9 Bulian version 9.6.1, which stems from...

6.5CVSS7.7AI score0.00149EPSS

Exploits1References2

OSSF Malicious Packages•added 2024/06/25 1:49 p.m.•2 views

Malicious code in asciidoctor_bibliography (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0References1

NVD•added 2023/09/01 11:15 a.m.•9 views

CVE-2023-40969

Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...

6.1CVSS6.3AI score0.00094EPSS

Exploits1References2

ATTACKERKB•added 2023/09/01 11:15 a.m.•1 views

CVE-2023-40969

Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...

6.1CVSS5.7AI score0.00094EPSS

Exploits1References3

Prion•added 2022/09/12 9:15 p.m.•9 views

Server side request forgery (ssrf)

SLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php...

7.5CVSS9.5AI score0.00316EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/09/12 12:0 a.m.•1 views

Slims9 Bulian 代码问题漏洞

Slims9 Bulian is a free and open source software from the Indonesian Slims community. It is used for library resource management e.g. books, journals, digital files and other library materials and administration. A security vulnerability exists in Slims9 Bulian version v9.4.2, which originates fr...

9.8CVSS8.4AI score0.00316EPSS

Exploits1References2

CVE•added 2022/03/17 10:35 a.m.•86 views

CVE-2021-45791

CVE-2021-45791 affects Slims8 Akasia 8.3.1. A SQL injection exists in multiple admin modules (bibliography, member_type, user_group, membership index) via the dir parameter, due to insufficient input escaping/validation. Exploitation is described as feasible by remotely authenticated librarian us...

8.8CVSS9AI score0.00316EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/03/17 12:0 a.m.•1 views

Slims8 Akasia SQL注入漏洞

Slims8 Akasia is a software of the Slims community in Indonesia. It is used for library resource management e.g. books, journals, digital documents and other library materials and administration.An SQL injection vulnerability exists in Slims8 Akasia version 8.3.1, which stems from missing SQL...

8.8CVSS6AI score0.00316EPSS

Exploits1References2

OpenVAS•added 2020/10/07 12:0 a.m.•17 views

Fedora: Security Advisory for pandoc-citeproc (FEDORA-2020-1eaffe0013)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.5AI score0.00509EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by