CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2011-3193

Malware in sbrugna...

6.8CVSS6.1AI score0.00194EPSS

Exploits2References6

Veracode•added 2020/07/28 5:29 a.m.•18 views

Remote Code Execution (RCE)

scratch-vm is vulnerable to remote code executionRCE. It does not escape extension URL values in the function getExtensionIdForOpcode in serialization/sb3.js, allowing an attacker to inject characters and execute it as a worker...

9.8CVSS9.5AI score0.06601EPSS

Exploits0References3Affected Software1

OSV•added 2020/07/27 7:55 p.m.•17 views

GHSA-VC9J-FHVV-8VRF Remote Code Execution in scratch-vm

MIT Lifelong Kindergarten Scratch scratch-vm before 0.2.0-prerelease.20200714185213 loads extension URLs from untrusted project.json files with certain characters, resulting in remote code execution because the URL's content is treated as a script and is executed as a worker. The responsible code...

9.8CVSS9.8AI score0.06601EPSS

Exploits0References5

OSV•added 2016/04/13 4:59 p.m.•1 views

DEBIAN-CVE-2016-3068

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted git ext:: URL when cloning a subrepository...

8.8CVSS8.8AI score0.05001EPSS

Exploits0References1

OSV•added 2016/04/13 4:59 p.m.•2 views

UBUNTU-CVE-2016-3068

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted git ext:: URL when cloning a subrepository...

8.8CVSS7.7AI score0.05001EPSS

Exploits0References4