CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•2 views

Malicious code in @zalastax/nolb-d1 (npm)

The package @zalastax/nolb-d1 was found to contain malicious code...

7AI score

vulnersOsv•added 2025/08/14 3:30 p.m.•3 views

datashadric (>=0.2.1 <=0.2.2), superset-custom-visual (=0.1.0) +3 more potentially affected by CVE-2025-55674 via apache-superset (=6.0.0)

apache-superset PYPI version =6.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on apache-superset and may be impacted: - datashadric =0.2.1, =0.1.0, =0.1.13 - superset-sqlalchemy-gizmosql-adbc-dialect =0.0.10 Source cves: CVE-2025-55674 Source...

6.5CVSS5.8AI score0.0014EPSS

OSSF Malicious Packages•added 2024/11/24 10:7 p.m.•2 views

Malicious code in d1-northwind (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 962330e56ce116749d23c41a6b7723d950582340889862760591e83aa4784e1e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

NVD•added 2023/10/16 7:15 a.m.•10 views

CVE-2023-45579

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and...

9.8CVSS9.7AI score0.09125EPSS

NVD•added 2023/10/16 6:15 a.m.•12 views

CVE-2023-45572

9.8CVSS9.7AI score0.08152EPSS

CVE•added 2023/10/16 12:0 a.m.•55 views

CVE-2023-45574

CVE-2023-45574 affects multiple D-Link devices (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1). The issue is a buffer overflow that allows a remote attacker to execute arbitrary code via the fn parameter of the file.data function. Vuln...

9.8CVSS9.6AI score0.22627EPSS

Exploits1References2Affected Software1

CVE•added 2023/10/16 12:0 a.m.•68 views

CVE-2023-45576

The CVE-2023-45576 entry describes a Buffer Overflow vulnerability affecting multiple D-Link router models (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1) with firmware versions listed in the description. The root cause is an issue in ...

CVE•added 2023/10/16 12:0 a.m.•201 views

CVE-2023-45580

CVE-2023-45580 affects multiple D-Link router models (DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200G+V2, DI-7200GV2.E1, DI-7300G+V2, DI-7400G+V2). The issue is a Buffer Overflow in the ddns.asp function that allows a remote attacker to execute arbitrary code via the wild/mx and other parameters. E...

CVE•added 2023/10/16 12:0 a.m.•54 views

CVE-2023-45578

The CVE-2023-45578 entry concerns a buffer overflow vulnerability in several D-Link router models (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1) where an attacker can remotely trigger arbitrary code execution via the pap_en/chap_en pa...

CVE•added 2023/10/16 12:0 a.m.•177 views

CVE-2023-45579

The CVE-2023-45579 issue is a buffer overflow in D-Link router firmware (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1) where the jingx.asp function’s ip/type parameter allows remote code execution. The root cause is a buffer overflow ...

CVE•added 2023/10/16 12:0 a.m.•40 views

CVE-2023-45572

CVE-2023-45572 is a buffer overflow vulnerability affecting D-Link DI-7xxx devices (notably DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200G+V2, DI-7200GV2.E1, DI-7300G+V2, DI-7400G+V2) where a remote attacker can execute arbitrary code via the fn parameter of the tgfile.htm function. Public sources...

9.8CVSS9.6AI score0.08152EPSS

CVE•added 2023/10/16 12:0 a.m.•188 views

CVE-2023-45573

CVE-2023-45573 describes a buffer overflow in D-Link devices (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1) caused by the n parameter of the mrclfile_del.asp function. The vulnerability enables a remote attacker to execute arbitrary c...

9.8CVSS9.6AI score0.07939EPSS

Vulnrichment•added 2023/10/16 12:0 a.m.•11 views

CVE-2023-45573

7.9AI score0.07939EPSS

Cvelist•added 2023/10/16 12:0 a.m.•14 views

CVE-2023-45572

9.8AI score0.08152EPSS

Vulnrichment•added 2023/10/16 12:0 a.m.•15 views

CVE-2023-45575

Stack Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and...

7.9AI score0.09125EPSS

CVE•added 2023/10/16 12:0 a.m.•43 views

CVE-2023-45577

The CVE-2023-45577 issue is a stack/buffer overflow in the D-Link H5/speedlimit.data endpoint of multiple DI-7xxx devices (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1). The root cause is an overflow in the wanid parameter handling, a...

9.8CVSS9.6AI score0.08152EPSS

Openbugbounty•added 2023/06/22 10:14 a.m.•6 views

d1.com.br Cross Site Scripting vulnerability OBB-3457428

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score