CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-2048

Malware in sbrugna...

10CVSS6AI score0.05782EPSS

Exploits0References53

Redos•added 2025/07/24 12:0 a.m.•6 views

ROS-20250724-04

The vulnerability of the fstrflocaltime function of the jq functional programming language is related to the use of memory after its release. memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely, affect the availability of protected information...

8.1CVSS5.9AI score0.00385EPSS

Exploits1

AlpineLinux•added 2025/07/13 10:18 p.m.•2 views

CVE-2025-1220

In PHP versions:8.1. before 8.1.33, 8.2. before 8.2.29, 8.3. before 8.3.23, 8.4. before 8.4.10 some functions like fsockopen lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parseurl treat the hostname in different way, thus openin...

5.3CVSS6.6AI score0.00156EPSS

Exploits1

RedhatCVE•added 2025/05/23 9:19 a.m.•1 views

CVE-2024-5465

Function vulnerabilities in the Calendar module Impact: Successful exploitation of this vulnerability will affect availability...

5.9CVSS7AI score0.00041EPSS

Exploits0References1

IBM Security Bulletins•added 2025/05/08 4:38 p.m.•8 views

Security Bulletin: IBM TX Advanced is affected by an Out-of-bounds Write vulnerability and by a Use of Inherently Dangerous Function vulnerability due to the way that the product uses certain C library functions.

Summary IBM TX Advanced is affected by an Out-of-bounds Write vulnerability and by a Use of Inherently Dangerous Function vulnerability due to the way that the product uses certain C library functions. IBM TX Advanced has changed the C library functions that it uses in order to address these...

7.8CVSS7.8AI score0.00042EPSS

Exploits0Affected Software1

OSV•added 2024/06/14 8:15 a.m.•0 views

CVE-2024-5465

Function vulnerabilities in the Calendar module Impact: Successful exploitation of this vulnerability will affect availability...

5.5CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2024/06/14 7:30 a.m.•16 views

CVE-2024-5465

Function vulnerabilities in the Calendar module Impact: Successful exploitation of this vulnerability will affect availability...

5.9CVSS7AI score0.00041EPSS

Exploits0References1

CVE•added 2024/06/14 7:30 a.m.•55 views

CVE-2024-5465

CVE-2024-5465 is described across sources as a vulnerability in the Calendar module affecting availability. The NVD entry provides CVSS 3.1 metrics (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) with a base score of 5.5, while Huawei’s CNA note lists a higher CNA score (5.9) with LOCAL attack vector, LOW ...

5.9CVSS7.2AI score0.00041EPSS

Exploits0References1Affected Software2

Positive Technologies•added 2024/06/14 12:0 a.m.•1 views

PT-2024-36394 · Unknown · Calendar Module

Name of the Vulnerable Software and Affected Versions: Calendar module affected versions not specified Description: The issue concerns function vulnerabilities in the Calendar module. Successful exploitation of this vulnerability will affect availability. Recommendations: At the moment, there is ...

5.9CVSS7.1AI score0.00041EPSS

Exploits0References5

myhack58•added 2014/03/06 12:0 a.m.•15 views

Senior PHP application vulnerability auditing techniques-vulnerability warning-the black bar safety net

Senior PHP application vulnerability auditing techniques Foreword Traditional code auditing techniques PHP version and application code audit Other factors and application code audit The expansion of our dictionary The variable itself is the key Variable coverage Traverse initialize variables...

0.2AI score

Exploits0

Positive Technologies•added 2009/01/01 12:0 a.m.•3 views

PT-2009-41: Multiple vulnerabilities in Kayako Support Suite

Vulnerability Description Positive Technologies Research Team discovered several Installation Path Disclosure vulnerabilities in Kayako Support Suite. The application uses a vulnerable PHP function unserialize, which allows an attacker to disclose the product installation path. In addition, there...

7.2AI score

Exploits0References4

0day.today•added 2008/05/28 12:0 a.m.•91 views

PHPhotoalbum 0.5 Multiple Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ============================================================== PHPhotoalbum 0.5 Multiple Remote SQL Injection Vulnerabilities ============================================================== Name : PHPhotoalbum v0.5 Multiple Remote SQL...

7.1AI score

Exploits0

Cvelist•added 2005/03/26 5:0 a.m.•13 views

CVE-2005-0888

Multiple cross-site scripting XSS vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the 1 class or 2 method name...

5.8AI score0.00634EPSS

Exploits0References4

RedHat Linux•added 2003/02/06 12:0 a.m.•29 views

(RHSA-2002:214) php security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP server. The mail function in PHP 4.x to 4.2.2 may allow local script authors to bypass safe mode restrictions and modify command line arguments to the MTA such as sendmail in the 5th argument to mail, altering MTA...

7.5CVSS6.4AI score0.20413EPSS

Exploits0