CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions WP Reset versions prior to 2.06 Description The WP Reset plugin for WordPress is susceptible to exposure of sensitive information in all versions up to and including 2.05. This occurs through the WF Licensing::log method when debugging is...

5.3CVSS5.9AI score0.00289EPSS

Exploits0References8

Tenable Nessus•added 2025/10/07 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986644)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986644 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix nftcountersenabled underflow at nftablesaddchain syzbot is reporting...

5.5CVSS5.7AI score0.00232EPSS

Exploits0References4

Elastic•added 2025/10/06 4:40 p.m.•19 views

Elasticsearch 8.18.8, 8.19.5, 9.0.8, 9.1.5 Security Update (ESA-2025-18)

Elasticsearch Insertion of sensitive information in log file ESA-2025-18 Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API Affected Versions: 7.x: All versions from 7.0.0 and u...

5.7CVSS6.7AI score0.00225EPSS

Exploits0

Tenable Nessus•added 2025/10/06 12:0 a.m.•10 views

RockyLinux 8 : openssh (RLSA-2025:16823)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:16823 advisory. openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled CVE-2025-26465 Tenable has extracted the preceding description block directly from the...

6.8CVSS7.1AI score0.06997EPSS

Exploits4References3

CISA KEV Catalog•added 2025/10/06 12:0 a.m.•8 views

Mozilla Multiple Products Remote Code Execution Vulnerability

Mozilla Firefox, SeaMonkey, and Thunderbird contain an unspecified vulnerability when JavaScript is enabled. This allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of...

9.8CVSS8AI score0.83279EPSS

In wildExploits14

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-1283

Malicious code in bioql PyPI...

9.9CVSS9.1AI score0.00759EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-27551

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00621EPSS

Exploits0References2