CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5243 matches found

OSV•added 2025/10/10 11:15 p.m.•1 views

DEBIAN-CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS5.3AI score0.00156EPSS

Exploits0References1

OSV•added 2025/10/10 11:15 p.m.•2 views

UBUNTU-CVE-2025-52885

8.6CVSS7.2AI score0.00156EPSS

Exploits0References6

Debian CVE•added 2025/10/10 10:11 p.m.•5 views

CVE-2025-52885

8.6CVSS5.3AI score0.00156EPSS

Exploits0

NVD•added 2025/10/10 10:15 a.m.•3 views

CVE-2025-41088

Stored Cross-Site Scripting XSS in Xibo Signage's Xibo CMS v4.1.2, due to a lack of proper validation of user input. To exploit the vulnerability, the attacker must create a template in the 'Templates' section, then add a text element in the 'Global Elements' section, and finally modify the 'Text...

5.1CVSS0.00332EPSS

Exploits0References1

CVE•added 2025/10/10 9:17 a.m.•9 views

CVE-2025-41088

CVE-2025-41088 affects Xibo CMS v4.1.2. A stored XSS flaw arises from insufficient validation of user input, exploited by creating a template in Templates, adding a text element in Global Elements, then altering the Text field with malicious payload. Impact described as cross-site script executio...

5.1CVSS5.2AI score0.00332EPSS

Exploits0References1

Vulnrichment•added 2025/10/10 9:17 a.m.•2 views

CVE-2025-41088 Stored Cross-Site Scripting (XSS) in CMS

5.1CVSS5.2AI score0.00332EPSS

Exploits0References1

Microsoft CVE•added 2025/10/10 8:2 a.m.•4 views

wifi: mac80211: increase scan_ies_len for S1G

...

7.8CVSS7AI score0.0014EPSS

Exploits0

Positive Technologies•added 2025/10/10 12:0 a.m.•3 views

PT-2025-41536

Name of the Vulnerable Software and Affected Versions Xibo CMS version 4.1.2 Description A stored Cross-Site Scripting XSS issue exists due to insufficient validation of user input. An attacker can exploit this by creating a template in the 'Templates' section, adding a text element in the 'Globa...

5.1CVSS5.8AI score0.00332EPSS

Exploits0References5

OSV•added 2025/10/09 9:47 a.m.•5 views

CVE-2025-39957 wifi: mac80211: increase scan_ies_len for S1G

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: increase scanieslen for S1G Currently the S1G capability element is not taken into account for the scanieslen, which leads to a buffer length validation failure in ieee80211prephwscan and subsequent WARN in...

7.8CVSS6.5AI score0.0014EPSS

Exploits0References7

CNNVD•added 2025/10/09 12:0 a.m.•3 views

Juniper Networks Junos OS Evolved 操作系统命令注入漏洞

Juniper Networks Junos OS Evolved is an upgraded version of Juniper Networks' Junos OS. Juniper Networks Junos OS Evolved suffers from an operating system command injection vulnerability that stems from improper handling of special elements, which could be exploited by an attacker to cause an OS...

5.3CVSS7.2AI score0.01029EPSS

Exploits0References1