CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

470 matches found

RedhatCVE•added 2025/12/05 4:36 a.m.•2 views

CVE-2025-11727

The Omnichannel for WooCommerce: Google, Amazon, eBay & Walmart Integration – Powered by Codisto plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the sync function in all versions up to, and including, 1.3.65 due to insufficient input sanitization and output escaping. This...

7.2CVSS5.2AI score0.00229EPSS

Exploits0References1

EUVD•added 2025/12/04 4:29 a.m.•1 views

EUVD-2025-201140

7.2CVSS4.8AI score0.00229EPSS

Exploits0References7

CVE•added 2025/12/04 4:29 a.m.•12 views

CVE-2025-11727

CVE-2025-11727 concerns Omnichannel for WooCommerce: Google, Amazon, eBay & Walmart Integration – Powered by Codisto for WordPress. The WordPress plugin is susceptible to Stored Cross-Site Scripting via the sync() function in all versions up to 1.3.65, caused by insufficient input sanitization an...

7.2CVSS4.9AI score0.00229EPSS

Exploits0References6

Tenable Nessus•added 2025/11/20 12:0 a.m.•4 views

TencentOS Server 3: freeradius:3.0 (TSSA-2024:0764)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0764 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

9CVSS7.9AI score0.22162EPSS

Exploits2References2

EUVD•added 2025/11/18 9:30 a.m.•2 views

EUVD-2025-197952

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS6.8AI score0.00056EPSS

Exploits0References2

NVD•added 2025/10/27 2:15 p.m.•2 views

CVE-2025-12283

A security flaw has been discovered in code-projects Client Details System 1.0. The impacted element is an unknown function. The manipulation results in authorization bypass. The attack can be launched remotely. The exploit has been released to the public and may be exploited...

8.1CVSS0.00012EPSS

Exploits1References5

CNVD•added 2025/10/24 12:0 a.m.•4 views

TOTOLINK N600R main function null pointer dereference vulnerability

TOTOLINK N600R is a dual-band wireless router launched by Korean brand TOTOLINK in 2013, which supports 2.4GHz and 5GHz dual-band concurrency with a maximum wireless transmission rate of 300Mbps. The TOTOLINK N600R suffers from a null pointer dereference vulnerability, which stems from the presen...

7.5CVSS6.8AI score0.0089EPSS

Exploits1References1

CNNVD•added 2025/10/10 12:0 a.m.•2 views

JeeWMS 安全漏洞

JeeWMS is a JAVA-based warehouse management system from China Huayi JeeWMS. A security vulnerability exists in JeeWMS version 20250820, which stems from the exportXls function not handling input correctly, which could lead to an SQL injection attack...

9.4CVSS7.7AI score0.00054EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-0063

Malware in sbrugna...

6.5CVSS7.3AI score0.00527EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-5810

Malware in sbrugna...

9.8CVSS9.3AI score0.00395EPSS

Exploits1References3