CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

97 matches found

EUVD•added 2026/02/02 4:16 p.m.•4 views

EUVD-2026-5112

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass. By inserting malicious Groovy elements, an attacker may bypass sandbox restrictions and obtain RCE Remote Code...

7.3CVSS5.7AI score0.00043EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-0807

Malware in sbrugna...

8.8CVSS8.8AI score0.00475EPSS

Exploits1References7

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-1235

Malicious code in bioql PyPI...

9CVSS7.1AI score0.00434EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-1128

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00327EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-2045

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00919EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-2141

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.01409EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-0840

Malicious code in bioql PyPI...

8.6CVSS8.6AI score0.02272EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-0886

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01976EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2022-0972

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.03127EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-4661

Malicious code in bioql PyPI...

8.6CVSS8.5AI score0.01918EPSS

Exploits0References3

NVD•added 2025/06/19 9:15 p.m.•5 views

CVE-2025-6384

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of CrafterCMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass. By inserting malicious Groovy elements, an attacker may bypass Sandbox restrictions and obtain RCE Remote Code...

9.1CVSS0.00317EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:55 a.m.•10 views

CVE-2017-15681

In Crafter CMS Crafter Studio 3.0.1 a directory traversal vulnerability exists which allows unauthenticated attackers to overwrite files from the operating system which can lead to RCE...

9.8CVSS6.9AI score0.01976EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:18 a.m.•11 views

CVE-2017-15684

Crafter CMS Crafter Studio 3.0.1 has a directory traversal vulnerability which allows unauthenticated attackers to view files from the operating system...

7.5CVSS6.9AI score0.03127EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:13 a.m.•9 views

CVE-2017-15682

In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to inject malicious JavaScript code resulting in a stored/blind XSS in the admin panel...

6.1CVSS6.2AI score0.01409EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:3 a.m.•6 views

CVE-2017-15680

In Crafter CMS Crafter Studio 3.0.1 an IDOR vulnerability exists which allows unauthenticated attackers to view and modify administrative data...

6.5CVSS6.9AI score0.00919EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:47 a.m.•9 views

CVE-2017-15683

In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to create a site with specially crafted XML that allows the retrieval of OS files out-of-band...

8.6CVSS6.8AI score0.01918EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:27 a.m.•12 views

CVE-2017-15686

Crafter CMS Crafter Studio 3.0.1 is affected by: Cross Site Scripting XSS, which allows remote attackers to steal users’ cookies...

6.1CVSS6.6AI score0.00327EPSS

Exploits0References1

OSV•added 2022/09/14 12:0 a.m.•23 views

GHSA-2JV3-V37P-65W3 CrafterCMS Crafter Studio Improperly Controls Dynamically-Managed Code Resources

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via FreeMarker SSTI...

7.2CVSS7.2AI score0.14522EPSS

Exploits1References3

OSV•added 2022/09/14 12:0 a.m.•19 views

GHSA-J6X3-3JQQ-M922 CrafterCMS OS Command Injection vulnerability

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass...

7.2CVSS7.2AI score0.1299EPSS

Exploits0References3

OSV•added 2022/09/13 7:15 p.m.•13 views

CVE-2022-40635

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass...

7.2CVSS7.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by