CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

346 matches found

EUVD•added 2025/12/26 12:0 a.m.•3 views

EUVD-2025-205443

A vulnerability exists in the libxmljs 1.0.11 when parsing a specially crafted XML document. Accessing the internal ref property on entityref and entitydecl nodes causes a segmentation fault, potentially leading to a denial-of-service DoS...

7.5CVSS6.4AI score0.00032EPSS

Exploits1References2

CNNVD•added 2025/12/26 12:0 a.m.•3 views

libxmljs 安全漏洞

libxmljs is the LibXML binding for node.js of the libxmljs open source. A security vulnerability exists in libxmljs version 1.0.11, which stems from the fact that accessing the internalref attribute of the entityref and entitydecl nodes when parsing a specially crafted XML document may result in ...

7.5CVSS6.4AI score0.00032EPSS

Exploits1References2

Vulnrichment•added 2025/12/26 12:0 a.m.•1 views

CVE-2025-25341

6.5AI score0.00032EPSS

Exploits1References1

CVE•added 2025/12/26 12:0 a.m.•12 views

CVE-2025-25341

CVE-2025-25341 affects libxmljs 1.0.11. The vulnerability occurs when parsing specially crafted XML documents: accessing the internal _ref property on entity_ref and entity_decl nodes can cause a segmentation fault, leading to a denial-of-service. Multiple sources (Red Hat, OSV, NVD, CNNVD, GHSA,...

7.5CVSS6.5AI score0.00032EPSS

Exploits1References1Affected Software1

CISA•added 2025/12/11 12:0 p.m.•6 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-58360link is external OSGeo GeoServer Improper Restriction of XML External Entity Reference Vulnerability This type of vulnerability is a frequent attack...

9.8CVSS6.9AI score0.81395EPSS

In wildExploits4References6

GithubExploit•added 2025/11/04 2:16 p.m.•187 views

Exploit for Improper Restriction of XML External Entity Reference in Jetbrains Ktor

ktor-xxe This project was created using the Ktor Project Gen...

9.8CVSS6.7AI score0.00003EPSS

Exploits6

CVE•added 2025/10/06 5:2 p.m.•25 views

CVE-2025-11341

CVE-2025-11341 affects Jinher OA (versions up to 2.0) via an XML External Entity (XXE) vulnerability in the function handling a request to /c6/Jhsoft.Web.module/eformaspx/WebDesign.aspx/?type=SystemUserInfo&style=1. The issue arises from manipulating an unknown function in that file, enabling rem...

9.8CVSS6.2AI score0.00055EPSS

Exploits1References4Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-9727

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00294EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-0615

Malicious code in bioql PyPI...

9.8CVSS5.9AI score0.00046EPSS

Exploits1References9