CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

150 matches found

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40440

Name of the Vulnerable Software and Affected Versions cPanel & WHM affected versions not specified Description Improper sanitization of the status query parameter in the '/unprotected/nova error' endpoint allows an unauthenticated attacker to inject arbitrary HTTP headers into the response...

8.3CVSS5.9AI score0.0003EPSS

Exploits0References8

EUVD•added 2025/12/11 9:31 p.m.•3 views

EUVD-2025-202722

OS Command Injection vulnerability in Ruijie RG-YST EST, YSTAP3.01B11P280YST250F V1.xxV2.xx allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua...

7.3AI score0.00201EPSS

Exploits0References4

OSV•added 2025/12/11 7:15 p.m.•2 views

CVE-2025-56113

8.8CVSS6.1AI score0.00201EPSS

Exploits0References3

Positive Technologies•added 2025/12/11 12:0 a.m.•3 views

PT-2025-50681

Name of the Vulnerable Software and Affected Versions Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F versions V1.xxV2.xx Description An OS Command Injection issue exists in Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F. Successful exploitation allows attackers to execute arbitrary commands. This is...

8.8CVSS7.3AI score0.00201EPSS

Exploits0References6

Cvelist•added 2025/12/11 12:0 a.m.•17 views

CVE-2025-56113

0.00201EPSS

Exploits0References3

Vulnrichment•added 2025/12/11 12:0 a.m.•3 views

CVE-2025-56113

7.5AI score0.00201EPSS

Exploits0References3

OSV•added 2025/11/12 7:18 p.m.•1 views

MAL-2025-179015 Malicious code in ter-sohyun-est (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3140f9d6b34ec291542ddf7d4d3f4abc6cf25b4e6cdd3e404749a3c4e32f32d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

Exploits0

EUVD•added 2025/11/12 7:18 p.m.•1 views

EUVD-2025-135694

Malicious code in ter-sohyun-est npm...

6.6AI score

Exploits0

EUVD•added 2025/11/12 7:18 p.m.•1 views

EUVD-2025-135693

Malicious code in ter-sohyun-est npm...

6.6AI score

Exploits0

Microsoft CVE•added 2025/11/02 1:1 a.m.•3 views

net: stmmac: move the EST lock to struct stmmac_priv

...

5.5CVSS6.9AI score0.00019EPSS

Exploits0

AstraLinux•added 2025/11/01 10:54 a.m.•4 views

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: netsched: genestimator: fix esttimer vs CONFIGPREEMPTRT=y syzbot reported a WARNING in esttimer 1 Problem here is that with CONFIGPREEMPTRT=y, timer callbacks can be preempted. Adopt preemptdisablenested/preemptenablenested to fi...

5.5CVSS5.7AI score0.00013EPSS

Exploits0References3

EUVD•added 2025/10/08 6:2 a.m.•2 views

EUVD-2025-31851

A flaw has been found in JhumanJ OpnForm up to 1.9.3. This affects an unknown part of the file /api/open/forms/ of the component Form Editor. This manipulation causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be used. This issue is currentl...

4.8CVSS2.7AI score0.00034EPSS

Exploits1References5

Tenable Nessus•added 2025/10/08 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-39900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netsched: genestimator: fix esttimer vs CONFIGPREEMPTRT=y syzbot reported a WARNING in esttimer 1 Problem here is that with CONFIGPREEMPTRT=y, timer callbacks c...

5.5CVSS6.1AI score0.00013EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-17964

Malware in sbrugna...

7.3CVSS7.4AI score0.00152EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-27276

Malware in sbrugna...

4CVSS4.2AI score0.00096EPSS

Exploits0References2