CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

83 matches found

OSV•added 2026/02/06 8:7 p.m.•3 views

CVE-2026-25636 calibre has a Path Traversal Leading to Arbitrary File Corruption and Code Execution

calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB conversion allows a malicious EPUB file to corrupt arbitrary existing files writable by the Calibre process. During conversion, Calibre resolves CipherReference URI from META-INF/encryption.xml to...

8.2CVSS5.6AI score0.00027EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2016-1374

Malware in sbrugna...

5.5CVSS5.3AI score0.0039EPSS

Exploits1References8

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-58979

Malicious code in bioql PyPI...

6.1CVSS5AI score0.00286EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 3:39 a.m.•7 views

CVE-2023-6767

A vulnerability, which was classified as problematic, was found in SourceCodester Wedding Guest e-Book 1.0. This affects an unknown part of the file /endpoint/add-guest.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The...

6.1CVSS6.3AI score0.00286EPSS

Exploits0

Gentoo Linux•added 2024/09/22 12:0 a.m.•21 views

calibre: Multiple Vulnerabilities

Background calibre is a powerful and easy to use e-book manager. Description Multiple vulnerabilities have been discovered in calibre. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

9.8CVSS7.6AI score0.93835EPSS

Exploits11

Tenable Nessus•added 2024/09/02 12:0 a.m.•16 views

Debian dla-3862 : calibre - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3862 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3862-1 [email protected]...

7.5CVSS7.3AI score0.00567EPSS

Exploits2References6

Fedora•added 2024/08/27 5:9 p.m.•26 views

[SECURITY] Fedora 40 Update: calibre-7.17.0-3.fc40

Calibre is meant to be a complete e-library solution. It includes library management, format conversion, news feeds to ebook conversion as well as e-book reader sync features. Calibre is primarily a ebook cataloging program. It manages your ebook collection for you. It is designed around the...

9.8CVSS6.8AI score0.93835EPSS

Exploits10

NVD•added 2023/12/22 5:15 a.m.•7 views

CVE-2023-7059

A vulnerability was found in SourceCodester School Visitor Log e-Book 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file log-book.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely...

5.4CVSS0.00142EPSS

Exploits1References3

OSV•added 2023/12/22 5:15 a.m.•3 views

CVE-2023-7059

5.4CVSS3.8AI score0.00142EPSS

Exploits1References3

Prion•added 2023/12/22 5:15 a.m.•11 views

Cross site scripting

4CVSS6.4AI score0.00142EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2023/12/22 5:0 a.m.•9 views

CVE-2023-7059 SourceCodester School Visitor Log e-Book log-book.php cross site scripting

4CVSS6.2AI score0.00142EPSS

Exploits1References3

CVE•added 2023/12/22 5:0 a.m.•40 views

CVE-2023-7059

The CVE-2023-7059 entry concerns SourceCodester School Visitor Log e-Book 1.0. The vulnerability is a cross-site scripting flaw in the log-book.php file triggered by manipulating the Full Name parameter. The issue is exploitable remotely, with public disclosure reported. Connected documents confi...

5.4CVSS4.2AI score0.00142EPSS

Exploits1References3Affected Software1

NVD•added 2023/12/13 6:15 p.m.•13 views

CVE-2023-6767

6.1CVSS0.00286EPSS

Exploits0References2

OSV•added 2023/12/13 6:15 p.m.•3 views

CVE-2023-6767

6.1CVSS4.1AI score

Exploits0References2

Prion•added 2023/12/13 6:15 p.m.•15 views

Cross site scripting

5CVSS6.5AI score0.00286EPSS

Exploits0References2Affected Software1

CVE•added 2023/12/13 6:0 p.m.•36 views

CVE-2023-6767

CVE-2023-6767 affects SourceCodester Wedding Guest e-Book 1.0, with a cross-site scripting vulnerability in /endpoint/add-guest.php caused by manipulation of the name argument. This allows remote initiation of an attack. Multiple connected sources confirm the issue but do not provide exploit code...

6.1CVSS4.8AI score0.00286EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/12/13 6:0 p.m.•8 views

CVE-2023-6767 SourceCodester Wedding Guest e-Book add-guest.php cross site scripting

5CVSS6.3AI score0.00286EPSS

Exploits0References2

Cvelist•added 2023/12/13 6:0 p.m.•19 views

CVE-2023-6767 SourceCodester Wedding Guest e-Book add-guest.php cross site scripting

5CVSS6.2AI score0.00286EPSS

Exploits0References2

Positive Technologies•added 2023/12/13 12:0 a.m.•3 views

PT-2023-32768 · Sourcecodester · Sourcecodester Wedding Guest E-Book

Name of the Vulnerable Software and Affected Versions: SourceCodester Wedding Guest e-Book version 1.0 Description: A vulnerability was found in SourceCodester Wedding Guest e-Book, affecting an unknown part of the file "/endpoint/add-guest.php". The manipulation of the name argument leads to...

6.1CVSS4.8AI score0.00286EPSS

Exploits0References6

CNNVD•added 2023/12/13 12:0 a.m.•3 views

Wedding Guest e-Book Cross-Site Scripting Vulnerability

Wedding Guest e-Book is a wedding guest e-book by rems individual developer. A cross-site scripting vulnerability exists in SourceCodester Wedding Guest e-Book version 1.0, which stems from a cross-site scripting XSS vulnerability in file /endpoint/add-guest.php...

6.1CVSS5.9AI score0.00286EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by