CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-17807

Malware in sbrugna...

4.8CVSS5.2AI score0.00235EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-28333

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00084EPSS

Exploits0References1

RedhatCVE•added 2025/06/23 8:40 a.m.•2 views

CVE-2025-49965

Cross-Site Request Forgery CSRF vulnerability in Oganro PixelBeds Channel Manager and Hotel Booking Engine pixelbeds-channel-manager-booking-engine allows Cross Site Request Forgery.This issue affects PixelBeds Channel Manager and Hotel Booking Engine: from n/a through = 1.0...

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

NVD•added 2025/06/20 3:15 p.m.•2 views

CVE-2025-49965

4.3CVSS0.00084EPSS

Exploits0References1

CVE•added 2025/06/20 3:4 p.m.•13 views

CVE-2025-49965

CVE-2025-49965 is a CSRF vulnerability in WordPress PixelBeds Channel Manager and Hotel Booking Engine, affecting versions 1.0 and earlier. The issue enables cross-site requests initiated by a logged-in user with no privileges required, requiring user interaction. Public details confirm affected ...

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

CNNVD•added 2025/06/20 12:0 a.m.•1 views

WordPress plugin PixelBeds Channel Manager and Hotel Booking Engine 跨站请求伪造漏洞

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in WordPress plugin...

4.3CVSS6.4AI score0.00084EPSS

Exploits0References1

Patchstack•added 2025/06/19 4:37 p.m.•4 views

WordPress PixelBeds Channel Manager and Hotel Booking Engine plugin <= 1.0 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Chu The Anh Blue Rock in WordPress Plugin PixelBeds Channel Manager and Hotel Booking Engine versions = 1.0...

4.3CVSS6.6AI score0.00084EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/05/22 5:55 p.m.•5 views

CVE-2020-25116

The Admin CP in vBulletin 5.6.3 allows XSS via an Announcement Title to Channel Manager...

4.8CVSS5.8AI score0.00235EPSS

Exploits1

OSV•added 2025/02/27 2:15 a.m.•1 views

DEBIAN-CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS5.6AI score0.00111EPSS

Exploits0References1

Microsoft CVE•added 2024/10/12 7:0 a.m.•1 views

kcm: Serialise kcm_sendmsg() for the same socket.

...

5.5CVSS7.3AI score0.00231EPSS

Exploits0

Positive Technologies•added 2021/11/03 12:0 a.m.•8 views

PT-2021-7724 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to th...

9.8CVSS5.8AI score0.9427EPSS

Exploits332References1326

CNVD•added 2020/09/04 12:0 a.m.•1 views

vBulletin Cross-Site Scripting Vulnerability (CNVD-2020-50934)

vBulletin is a suite of forum programs that can be customized to suit your needs. A cross-site scripting vulnerability exists in the Admin CP in vBulletin 5.6.3. The vulnerability can be exploited by an attacker to conduct a cross-site scripting attack via the announcement header of the channel...

4.8CVSS6.2AI score0.00235EPSS

Exploits1References1

OSV•added 2020/09/03 6:15 p.m.•1 views

CVE-2020-25116

The Admin CP in vBulletin 5.6.3 allows XSS via an Announcement Title to Channel Manager...

4.8CVSS5.8AI score0.00235EPSS

Exploits1References1

NVD•added 2020/09/03 6:15 p.m.•11 views

CVE-2020-25116

The Admin CP in vBulletin 5.6.3 allows XSS via an Announcement Title to Channel Manager...

4.8CVSS4.9AI score0.00235EPSS

Exploits1References1

Prion•added 2020/09/03 6:15 p.m.•11 views

Design/Logic Flaw

The Admin CP in vBulletin 5.6.3 allows XSS via an Announcement Title to Channel Manager...

3.5CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

CVE•added 2020/09/03 5:20 p.m.•41 views

CVE-2020-25116

The CVE-2020-25116 entry identifies a cross-site scripting (XSS) vulnerability in the Admin CP of vBulletin 5.6.3, exploitable via the Announcement Title to Channel Manager. Concrete details in connected documents confirm the affected product/version and the exact vulnerable component (Admin CP/C...

4.8CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/09/03 5:20 p.m.•14 views

CVE-2020-25116

The Admin CP in vBulletin 5.6.3 allows XSS via an Announcement Title to Channel Manager...

4.8AI score0.00235EPSS

Exploits1References1

NVD•added 2017/05/12 3:29 p.m.•14 views

CVE-2017-0620

An elevation of privilege vulnerability in the Qualcomm Secure Channel Manager driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android...

7.6CVSS6.4AI score0.00049EPSS

Exploits0References2

OSV•added 2017/05/12 3:29 p.m.•1 views

CVE-2017-0620

7CVSS6.1AI score0.00049EPSS

Exploits0References2

Prion•added 2017/05/12 3:29 p.m.•18 views

Privilege escalation

7.6CVSS6.7AI score0.00049EPSS

Exploits0References2Affected Software2

Rows per page