CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/05/23 9:45 a.m.•3 views

CVE-2024-25865

Cross Site Scripting XSS vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function...

6.1CVSS6.5AI score0.00302EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 4:9 a.m.•5 views

CVE-2023-47435

An issue in the verifyPassword function of hexo-theme-matery v2.0.0 allows attackers to bypass authentication and access password protected pages...

9.8CVSS7.4AI score0.00082EPSS

Exploits0

OSV•added 2024/04/19 6:15 p.m.•2 views

CVE-2023-47435

An issue in the verifyPassword function of hexo-theme-matery v2.0.0 allows attackers to bypass authentication and access password protected pages...

9.8CVSS5.8AI score0.00082EPSS

Exploits0References1

CNNVD•added 2024/04/19 12:0 a.m.•2 views

hexo-theme-matery 安全漏洞

hexo-theme-matery is a comprehensive and beautiful Hexo theme based on material design and responsive design by the individual developers at blinkfox. A security vulnerability exists in hexo-theme-matery version v2.0.0, which originated from a vulnerability that allows an attacker to bypass...

9.8CVSS7AI score0.00082EPSS

Exploits0References2

Positive Technologies•added 2024/04/19 12:0 a.m.•4 views

PT-2024-13451 · Unknown · Hexo-Theme-Matery

Name of the Vulnerable Software and Affected Versions: hexo-theme-matery version 2.0.0 Description: The issue lies in the verifyPassword function, allowing attackers to bypass authentication and access password-protected pages. Recommendations: For hexo-theme-matery version 2.0.0, as a temporary...

9.8CVSS7.3AI score0.00082EPSS

Exploits0References2

Github Security Blog•added 2024/03/03 12:30 a.m.•15 views

hexo-theme-anzhiyu Cross-site Scripting vulnerability

Cross Site Scripting XSS vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function...

6.1CVSS6.7AI score0.00302EPSS

Exploits1References3Affected Software1

NVD•added 2024/03/02 10:15 p.m.•12 views

CVE-2024-25865

Cross Site Scripting XSS vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function...

6.1CVSS6.2AI score0.00302EPSS

Exploits1References1

OSV•added 2024/03/02 10:15 p.m.•3 views

CVE-2024-25865

Cross Site Scripting XSS vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function...

6.1CVSS6.1AI score

Exploits0References1

Vulnrichment•added 2024/03/02 12:0 a.m.•12 views

CVE-2024-25865

Cross Site Scripting XSS vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function...

6.5AI score0.00302EPSS

Exploits1References1

CNNVD•added 2024/03/02 12:0 a.m.•2 views

hexo-theme-anzhiyu Security Vulnerabilities

hexo-theme-anzhiyu is a clean hexo theme by the personal developer of Chen Zhiwei anzhiyu-c. A security vulnerability exists in hexo-theme-anzhiyu v1.6.12, which stems from a cross-site scripting XSS vulnerability in the algolia search function...

6.1CVSS5.8AI score0.00302EPSS

Exploits1References2

Cvelist•added 2024/03/02 12:0 a.m.•9 views

CVE-2024-25865

Cross Site Scripting XSS vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function...

6.5AI score0.00302EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by