CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1083 matches found

EUVD•added 2025/11/10 5:21 p.m.•1 views

EUVD-2025-48754

Malicious code in architecturalcatz3n npm...

6.6AI score

Exploits0

EUVD•added 2025/11/10 5:21 p.m.•1 views

EUVD-2025-45315

Malicious code in similarcatz3n npm...

6.6AI score

Exploits0

OSSF Malicious Packages•added 2025/11/10 5:21 p.m.•2 views

Malicious code in verbal_cat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 820a723963f25fa496de932e4cc70d132bbd24c536a15a80357b43ae37015efd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

RedhatCVE•added 2025/10/17 8:40 a.m.•4 views

CVE-2025-41018

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

9.8CVSS8AI score0.00038EPSS

Exploits0References1

OSV•added 2025/10/16 8:15 a.m.•1 views

CVE-2025-41018

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

9.8CVSS5.8AI score0.00038EPSS

Exploits0References1

NVD•added 2025/10/16 8:15 a.m.•2 views

CVE-2025-41018

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

9.8CVSS0.00038EPSS

Exploits0References1

Cvelist•added 2025/10/16 7:56 a.m.•5 views

CVE-2025-41018 SQL injection vulnerability in Sergestec's Exito

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

9.3CVSS0.00038EPSS

Exploits0References1

Vulnrichment•added 2025/10/16 7:56 a.m.•3 views

CVE-2025-41018 SQL injection vulnerability in Sergestec's Exito

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

9.3CVSS7.5AI score0.00038EPSS

Exploits0References1

CVE•added 2025/10/16 7:56 a.m.•7 views

CVE-2025-41018

The CVE-2025-41018 entry details a SQL injection in Sergestec’s Exito v8.0. The vulnerability is reachable via the cat parameter in /public.php, allowing an attacker to retrieve, create, update, and delete databases. Connected sources (Red Hat, NVD, CVE lists, ENISA/EUVD) corroborate the same des...

9.8CVSS7.5AI score0.00038EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/16 7:56 a.m.•0 views

EUVD-2025-34736

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

9.3CVSS7.4AI score0.00038EPSS

Exploits0References2

CNNVD•added 2025/10/16 12:0 a.m.•2 views

Sergestec Exito SQL注入漏洞

Sergestec Exito is a sales platform from Sergestec. A SQL injection vulnerability exists in Sergestec Exito version 8.0, which stems from incorrect manipulation of the parameter cat in the file /public.php, which could lead to a SQL injection attack...

9.8CVSS7.7AI score0.00038EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-2129

Malware in sbrugna...

7.5CVSS6.4AI score0.01343EPSS

Exploits0References12

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-15594

Malware in sbrugna...

7.8CVSS7.7AI score0.00155EPSS

Exploits0References3