CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1378 matches found

Circl•added 2024/07/28 12:58 a.m.•5 views

CVE-2024-41818

creationtimestamp| type| source ---|---|--- 2024-07-28 00:58:52+00:00| published-proof-of-concept| https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v...

7.5CVSS6.6AI score0.00828EPSS

Exploits1References1

OpenVAS•added 2024/07/03 12:0 a.m.•14 views

Netatalk < 3.2.1 Multiple Vulnerabilities

Netatalk is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netatalk:netatalk"; ifdescription...

9.8CVSS8.7AI score0.00931EPSS

Exploits3References3

Github Security Blog•added 2024/07/01 6:35 p.m.•21 views

ZDI-CAN-23894: Parse Server literalizeRegexPart SQL Injection Authentication Bypass Vulnerability

Impact This vulnerability allows SQL injection when Parse Server is configured to use the PostgreSQL database. Patches The algorithm to detect SQL injection has been improved. Workarounds None. References - https://github.com/parse-community/parse-server/security/advisories/GHSA-c2hr-cqg6-8j6r -...

9.8CVSS7.8AI score0.20171EPSS

Exploits0References7Affected Software1

Circl•added 2024/06/11 5:49 p.m.•4 views

CVE-2024-37301

creationtimestamp| type| source ---|---|--- 2024-06-11 17:49:20+00:00| published-proof-of-concept| https://github.com/adfinis/document-merge-service/security/advisories/GHSA-v5gf-r78h-55q6...

7.2CVSS7.3AI score0.0104EPSS

Exploits0References1

Circl•added 2024/05/30 12:22 p.m.•6 views

CVE-2024-35189

creationtimestamp| type| source ---|---|--- 2024-05-30 12:22:15+00:00| published-proof-of-concept| https://github.com/ethyca/fides/security/advisories/GHSA-rcvg-jj3g-rj7c...

6.5CVSS6.6AI score0.00577EPSS

Exploits1References1

Circl•added 2024/05/29 10:2 a.m.•3 views

CVE-2024-34715

creationtimestamp| type| source ---|---|--- 2024-05-29 10:02:28+00:00| published-proof-of-concept| https://github.com/ethyca/fides/security/advisories/GHSA-8cm5-jfj2-26q7...

3.3CVSS5.8AI score0.00275EPSS

Exploits1References1

GithubExploit•added 2024/05/26 3:43 p.m.•437 views

Exploit for OS Command Injection in Dolibarr Dolibarr_Erp\/Crm

CVE-2023-30253 Description Dolibarr before 17.0.1 al...

8.8CVSS9AI score0.79335EPSS

Exploits16

Circl•added 2024/05/03 8:30 p.m.•4 views

CVE-2024-34075

creationtimestamp| type| source ---|---|--- 2024-05-03 20:30:38+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-hfrv-h3q8-9jpr...

6.2CVSS6.4AI score0.00299EPSS

Exploits0References1

OSV•added 2024/05/01 9:30 p.m.•3 views

GHSA-R4Q9-XX5G-J24P s3-url-parser vulnerable to Denial of Service via regexes component

s3-url-parser 1.0.3 is vulnerable to denial of service via the regexes component...

7.5CVSS7.1AI score0.00593EPSS

Exploits0References4

NVD•added 2024/04/29 4:15 a.m.•39 views

CVE-2024-2756

Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard insecure cookie in the victim's browser which is treated as a Host- or Secure- cookie by PHP applications...

6.5CVSS7.9AI score0.3786EPSS

Exploits0References6

Debian CVE•added 2024/04/29 3:34 a.m.•49 views

CVE-2024-2756

6.5CVSS7AI score0.3786EPSS

Exploits0

Circl•added 2024/04/25 1:0 p.m.•5 views

CVE-2024-32649

creationtimestamp| type| source ---|---|--- 2024-04-25 13:00:55+00:00| published-proof-of-concept| https://github.com/vyperlang/vyper/security/advisories/GHSA-5jrj-52x8-m64h...

5.3CVSS6AI score0.00451EPSS

Exploits0References1

Circl•added 2024/04/25 12:46 p.m.•4 views

CVE-2024-32648

creationtimestamp| type| source ---|---|--- 2024-04-25 12:46:04+00:00| published-proof-of-concept| https://github.com/vyperlang/vyper/security/advisories/GHSA-m2v9-w374-5hj9...

5.3CVSS6AI score0.00415EPSS

Exploits0References1

Circl•added 2024/04/25 12:36 p.m.•4 views

CVE-2024-32645

creationtimestamp| type| source ---|---|--- 2024-04-25 12:36:44+00:00| published-proof-of-concept| https://github.com/vyperlang/vyper/security/advisories/GHSA-xchq-w5r3-4wg3...

5.3CVSS6AI score0.00451EPSS

Exploits0References1

Circl•added 2024/04/17 9:15 p.m.•3 views

CVE-2024-32472

creationtimestamp| type| source ---|---|--- 2024-04-17 21:15:16+00:00| published-proof-of-concept| https://github.com/excalidraw/excalidraw/security/advisories/GHSA-m64q-4jqh-f72f...

6.1CVSS6.3AI score0.00561EPSS

Exploits0References1

Circl•added 2024/04/15 8:21 p.m.•5 views

CVE-2024-4340

creationtimestamp| type| source ---|---|--- 2024-04-15 20:21:25+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-2m57-hf25-phgg...

7.5CVSS7.1AI score0.0321EPSS

Exploits0References1

Circl•added 2024/03/28 12:31 a.m.•3 views

CVE-2024-25354

creationtimestamp| type| source ---|---|--- 2024-03-28 00:31:40+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-cqfh-c4c5-c2hg...

7.5CVSS5.8AI score0.00575EPSS

Exploits0References1

Circl•added 2024/03/13 4:46 p.m.•2 views

GHSA-PR2M-PX7J-XG65

creationtimestamp| type| source ---|---|--- 2024-03-13 16:46:45+00:00| seen| https://t.me/ctinow/206877...

4.8AI score

Exploits0References1

Circl•added 2024/03/07 11:47 p.m.•3 views

GHSA-RJ98-CRF4-G69W

creationtimestamp| type| source ---|---|--- 2024-03-07 23:47:20+00:00| seen| https://t.me/ctinow/202890...

4.8AI score

Exploits0References1

OSV•added 2024/03/06 10:59 a.m.•31 views

BIT-OPENFIRE-2023-32315

Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup...

8.6CVSS8.1AI score0.99999EPSS

Exploits15References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by