CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

RedhatCVE•added 2025/11/28 11:9 a.m.•4 views

CVE-2025-59026

Malicious content uploaded as file can be used to execute script code when following attacker-controlled links. Unintended actions can be executed in the context of the users account, including exfiltration of sensitive information. Please deploy the provided updates and patch releases. No public...

5.4CVSS7.2AI score0.00024EPSS

Exploits0References1

EUVD•added 2025/11/27 12:30 p.m.•1 views

EUVD-2025-199815

5.4CVSS6.7AI score0.00024EPSS

Exploits0References2

EUVD•added 2025/11/27 12:30 p.m.•2 views

EUVD-2025-199812

5.4CVSS6.7AI score0.00024EPSS

Exploits0References2

Vulnrichment•added 2025/11/27 9:23 a.m.•2 views

CVE-2025-30186

5.4CVSS6.9AI score0.00024EPSS

Exploits0References1

Cvelist•added 2025/11/27 9:23 a.m.•4 views

CVE-2025-30186

5.4CVSS0.00024EPSS

Exploits0References1

Positive Technologies•added 2025/11/27 12:0 a.m.•2 views

PT-2025-48258

5.4CVSS7.2AI score0.00024EPSS

Exploits0References2

Positive Technologies•added 2025/11/27 12:0 a.m.•2 views

PT-2025-48255

5.4CVSS7.2AI score0.00024EPSS

Exploits0References2

CVE•added 2025/10/31 8:54 a.m.•1 views

CVE-2025-30188

The CVE-2025-30188 entry describes a vulnerability in Open-Xchange OX App Suite where malicious or unintentional API requests can push large amounts of data into caches. This cache growth can evict information required for the web frontend to operate, potentially causing component unavailability....

7.5CVSS6.3AI score0.00061EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-46200

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.0041EPSS

Exploits0References2

OSV•added 2025/03/17 2:46 p.m.•9 views

GHSA-W6FV-6GCC-X825 Zincati allows unprivileged access to rpm-ostree D-Bus `Deploy()` and `FinalizeDeployment()` methods

Impact Zincati ships a polkit rule which allows the zincati system user to use the following actions: - org.projectatomic.rpmostree1.deploy: used to deploy updates to the system - org.projectatomic.rpmostree1.finalize-deployment: used to reboot the system into the deployed update Since Zincati...

5.9CVSS6.1AI score0.00054EPSS

Exploits0References7

NVD•added 2024/04/08 9:15 a.m.•6 views

CVE-2024-23191

Upsell advertisement information of an account can be manipulated to execute script code in the context of the users browser session. To exploit this an attacker would require temporary access to a users account or an successful social engineering attack to lure users to maliciously configured...

5.4CVSS5.5AI score0.001EPSS

Exploits0References5

OSV•added 2024/02/12 9:15 a.m.•0 views

CVE-2023-41703

User ID references at mentions in document comments were not correctly sanitized. Script code could be injected to a users session when working with a malicious document. Please deploy the provided updates and patch releases. User-defined content like comments and mentions are now filtered to avo...

6.1CVSS5.8AI score

Exploits0References3

NVD•added 2024/02/12 9:15 a.m.•10 views

CVE-2023-41703

6.1CVSS6.3AI score0.00711EPSS

Exploits0References3

Prion•added 2024/02/12 9:15 a.m.•15 views

Cross site request forgery (csrf)

Processing of user-defined mail search expressions is not limited. Availability of OX App Suite could be reduced due to high processing load. Please deploy the provided updates and patch releases. Processing time of mail search expressions now gets monitored, and the related request is terminated...

4CVSS7.2AI score0.00217EPSS

Exploits0References2

Cvelist•added 2024/02/12 8:15 a.m.•13 views

CVE-2023-41703

6.1CVSS6.5AI score0.00711EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by