CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

135 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в firefox

A ambiguous file picker design could have confused users who intended to select and upload a single file, into uploading an entire directory. This issue was addressed by adding a new prompt. This vulnerability affects Firefox versions earlier than 85...

6.5CVSS6.9AI score0.00137EPSS

Exploits1References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в firefox, thunderbird

When creating a callback via IPC to display the File Picker window, multiple identical callbacks might be created at once. Eventually, all of them would be destroyed as soon as one of the callbacks is completed. This could lead to a use-after-free condition, resulting in a potentially exploitable...

6.5CVSS6.6AI score0.00137EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-17858

Malware in sbrugna...

6.5CVSS7.9AI score0.00936EPSS

Exploits0References10

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-2081

Malware in sbrugna...

5.4CVSS5.5AI score0.00254EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-5901

Malware in sbrugna...

4.8CVSS5.2AI score0.0031EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-54429

Malicious code in bioql PyPI...

6.5CVSS7.6AI score0.00137EPSS

Exploits0References6

Tenable Nessus•added 2025/09/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-25978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient file size checks resulted in a denial of service risk in the file picker's unzip functionality. CVE-2024-25978 Note that Nessus relies on the...

7.5CVSS7.1AI score0.00292EPSS

Exploits0References2

Tenable Nessus•added 2025/09/02 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2018-1042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Moodle 3.x has Server Side Request Forgery in the filepicker. CVE-2018-1042 Note that Nessus relies on the presence of the package as reported by the vendor...

6.5CVSS6.4AI score0.12866EPSS

Exploits4References2

Tenable Nessus•added 2025/08/31 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-8881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in File Picker in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who convinced a user to engage in specific UI...

6.5CVSS6.4AI score0.00096EPSS

Exploits0References2

OSV•added 2025/08/28 9:18 a.m.•1 views

SUSE-SU-2025:03008-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 140.2.0 ESR MFSA 2025-67 bsc1248162 CVE-2025-9179 bmo1979527: Sandbox escape due to invalid pointer in the Audio/Video: GMP component CVE-2025-9180 bmo1979782: Same-origin policy bypass in the Graphics:...

9.8CVSS7.3AI score0.0021EPSS

Exploits0References12

SUSE CVE•added 2025/08/14 2:55 a.m.•1 views

SUSE CVE-2025-8881

Inappropriate implementation in File Picker in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.5AI score0.00096EPSS

Exploits0References3

Debian CVE•added 2025/08/13 2:43 a.m.•2 views

CVE-2025-8881

6.5CVSS6.3AI score0.00096EPSS

Exploits0

Veracode•added 2024/04/03 10:29 a.m.•21 views

Denial Of Service (DoS)

moodle/moodle is vulnerable to Denial of Service DoS. The vulnerability is due to insufficient file size checks in the file picker's unzip functionality. An attacker can cause a denial of service by uploading specially crafted zip files...

7.5CVSS6.4AI score0.00292EPSS

Exploits0References7Affected Software1

OSV•added 2024/03/31 6:22 p.m.•15 views

BIT-MOODLE-2024-25978 Msa-24-0001: denial of service risk in file picker unzip functionality