CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-1574

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01271EPSS

Exploits0References4

CVE•added 2023/05/16 4:0 p.m.•54 views

CVE-2023-32985

The CVE-2023-32985 issue affects the Jenkins Sidebar Link Plugin (version 2.2.1 and earlier). It allows path traversal by not properly restricting the path of files during a form-validation operation, enabling attackers with Overall/Read permission to check whether an attacker-specified file path...

4.3CVSS4.3AI score0.01358EPSS

Exploits0References1Affected Software1

CVE•added 2023/01/24 12:0 a.m.•65 views

CVE-2023-24449

CVE-2023-24449 refers to the PWauth Security Realm Plugin for Jenkins (version 0.4 and earlier). The issue is a path traversal-like flaw where file-name restrictions are not applied in form-validation code, enabling attackers with Overall/Read permission to check for the existence of an attacker-...

4.3CVSS4.4AI score0.00661EPSS

Exploits0References1Affected Software1

NVD•added 2022/04/14 10:15 p.m.•13 views

CVE-2022-24854

Metabase is an open source business intelligence and analytics application. SQLite has an FDW-like feature called ATTACH DATABASE, which allows connecting multiple SQLite databases via the initial connection. If the attacker has SQL permissions to at least one SQLite database, then it can attach...

8.8CVSS0.00291EPSS

Exploits0References2

OSV•added 2022/02/03 4:54 p.m.•2 views

USN-5030-2 libdbi-perl vulnerabilities

USN-5030-1 addressed vulnerabilities in Perl DBI module. This update provides the corresponding updates for Ubuntu 16.04 ESM. Original advisory details: It was discovered that the Perl DBI module incorrectly opened files outside of the folder specified in the data source name. A remote attacker...

7.1CVSS6.9AI score0.00123EPSS

Exploits1References3