CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-4385

Malicious code in bioql PyPI...

5.8CVSS5AI score0.00027EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-0754

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01961EPSS

Exploits0References8

RedhatCVE•added 2025/06/25 12:53 a.m.•4 views

CVE-2023-47297

A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands, including editing system security auditing configurations...

9.8CVSS8AI score0.00441EPSS

Exploits1References1

Positive Technologies•added 2025/05/11 12:0 a.m.•3 views

PT-2025-20667 · Unknown · Ctcms Content Management System

Name of the Vulnerable Software and Affected Versions: CTCMS Content Management System version 2.1.2 Description: A critical issue was found in the function del of the file ctcmsappscontrollersadminTpl.php of the component File Handler. The manipulation of the argument File leads to path traversa...

8.1CVSS5.4AI score0.00505EPSS

Exploits1References9

Debian CVE•added 2025/04/08 3:31 a.m.•5 views

CVE-2025-3406

A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affected is the function stbhwbuildtilesetfromimage of the component Header Array Handler. The manipulation of the argument w leads to out-of-bounds read. It is possible to launch the attack remotely...

6.5CVSS4.1AI score0.00247EPSS

Exploits0

Positive Technologies•added 2023/09/06 12:0 a.m.•2 views

PT-2023-27526 · Unknown · Go-Ethereum

Name of the Vulnerable Software and Affected Versions: go-ethereum geth versions prior to 1.12.1-stable Description: A vulnerable node can be made to consume unbounded amounts of memory when handling specially crafted p2p messages sent from an attacker node. This occurs because the p2p handler...

7.5CVSS7.4AI score0.00421EPSS

Exploits0References11

Positive Technologies•added 2023/01/11 12:0 a.m.•2 views

PT-2023-10592 · Unknown · Insteon Hub

Name of the Vulnerable Software and Affected Versions: Insteon Hub version 1012 Description: Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub. Specially crafted commands sent through the PubNub service can cause a...

9.9CVSS8.8AI score0.00437EPSS

Exploits0References4

Prion•added 2018/08/21 11:29 p.m.•15 views

Command injection

An issue was discovered in Bloop Airmail 3 3.5.9 for macOS. It registers and uses the airmail:// URL scheme. The "send" command in the URL scheme allows an external application to send arbitrary emails from an active account without authentication. The handler has no restriction on who can use it...

5CVSS7.6AI score0.00232EPSS

Exploits0References1Affected Software1

UbuntuCve•added 2015/02/28 1:59 a.m.•30 views

CVE-2014-9676

The segwritepacket function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service "invalid memory handler" and possibly execute arbitrary code via a crafted video that triggers a use after free...

6.8CVSS7.5AI score0.01607EPSS

Exploits1References2

securityvulns•added 2003/10/15 12:0 a.m.•29 views

[Full-Disclosure] Gaim festival plugin exploit

It has come to my attention that people have actually used this example code for a gaim plugin: AIM::register"Festival TTS", "0.0.1", "goodbye", ""; AIM::print"Perl Says", "Loaded Festival TTS"; AIM::command"idle", "60000" if $pro ne "Offline"; AIM::addeventhandler"eventimrecv", "synthesize"; sub...

7.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by