CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

14962 matches found

CVE•added 2025/11/14 6:0 a.m.•13 views

CVE-2025-10686

The CVE-2025-10686 has concrete details across multiple sources: Creta Testimonial Showcase WordPress plugin prior to v1.2.4 is vulnerable to Local File Inclusion. Authenticated users with editor-level access or higher can include and execute arbitrary PHP files on the server, enabling code execu...

7.2CVSS6.9AI score0.00097EPSS

Exploits0References1

Vulnrichment•added 2025/11/14 12:0 a.m.•1 views

CVE-2025-63680

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw CWE-22 that, in combination with Windows ShellExecuteW fallback extension resolution, leads to arbitrary code execution when a user clicks a crafted entry. By creating a trailing-dot folder and placing a...

7.5AI score0.00013EPSS

Exploits1References1

CNVD•added 2025/11/14 12:0 a.m.•1 views

ZOHO ManageEngine Applications Manager Command Injection Vulnerability

ZOHO ManageEngine Applications Manager is a set of IT operation and maintenance management solutions of the United States ZhuoHao ZOHO company. The product has application performance management, fault management, report generation and SLA management and other functions. A command injection...

8.8CVSS7.8AI score0.02158EPSS

Exploits0References1

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-178987

Malicious code in execute-char-char-stub-serialize npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-178936

Malicious code in fast-stack-tau-execute-hash npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179091

Malicious code in epsilon-execute-pi-interpret-index npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175818

Malicious code in unix-execute-file-route-reject npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175634

Malicious code in water-execute-rain-root-cloud npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-178038

Malicious code in log-cron-execute-small-signal npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-176426

Malicious code in serialize-bash-authenticate-execute-cloud npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-178372

Malicious code in interface-stack-mock-execute-log npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179761

Malicious code in char-cat-execute-eta-authenticate npm...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-186895 Malicious code in execute-char-char-stub-serialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fe5d9354bb43f2724bc7efeec94e26f50bce0f7ac425402af053df136cd5c11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179026

Malicious code in eta-refactor-execute-float-load npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175815

Malicious code in unix-zeta-star-execute-uglify npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175553

Malicious code in wind-execute-authorize-mu-byte npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-175863

Malicious code in try-signal-lambda-execute-kernel npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-178986

Malicious code in execute-java-short-cluster-bundle npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179742

Malicious code in chi-short-export-assert-execute npm...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-190242 Malicious code in water-execute-rain-root-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6de575c2b404267b02a2a3ca2c624486aef9c70fac497b83043375c8c4080eac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by