CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-31378

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00068EPSS

Exploits1References3

OSV•added 2025/09/26 6:15 p.m.•1 views

CVE-2025-45994

An issue in Aranda PassRecovery v1.0 allows attackers to enumerate valid user accounts in Active Directory via sending a crafted POST request to /user/existdirectory/1...

7.5CVSS5.8AI score0.00068EPSS

Exploits1References2

CVE•added 2025/09/26 12:0 a.m.•9 views

CVE-2025-45994

CVE-2025-45994 affects Aranda PassRecovery v1.0. The vulnerability is an unauthenticated POST to /user/existdirectory/1 that enables enumeration of valid Active Directory user accounts. This is documented across multiple sources as an information-disclosure issue with potential impact on account ...

7.5CVSS6.5AI score0.00068EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2025/09/26 12:0 a.m.•1 views

CVE-2025-45994

An issue in Aranda PassRecovery v1.0 allows attackers to enumerate valid user accounts in Active Directory via sending a crafted POST request to /user/existdirectory/1...

6.5AI score0.00068EPSS

Exploits1References2

Positive Technologies•added 2025/09/26 12:0 a.m.•2 views

PT-2025-39669

Name of the Vulnerable Software and Affected Versions Aranda PassRecovery version 1.0 Description An issue allows attackers to enumerate valid user accounts in Active Directory. This is achieved by sending a crafted POST request to the /user/existdirectory/1 API endpoint. The POST request allows...

7.5CVSS6.4AI score0.00068EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by