CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

GithubExploit•added 2026/04/23 8:29 a.m.•67 views

Automated-CSRF-PoC-Generator

Description: A specialized Python script designed to automate th...

5.8AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2021-7172

Malicious code in bioql PyPI...

7.6CVSS5.7AI score0.01249EPSS

Exploits0References2

The Hacker News•added 2024/10/22 5:6 p.m.•15 views

Gophish Framework Used in Phishing Campaigns to Deploy Remote Access Trojans

Russian-speaking users have become the target of a new phishing campaign that leverages an open-source phishing toolkit called Gophish to deliver DarkCrystal RAT aka DCRat and a previously undocumented remote access trojan dubbed PowerRAT. "The campaign involves modular infection chains that are...

7.2AI score

Exploits0

Talos Blog•added 2024/10/22 10:0 a.m.•10 views

Threat actor abuses Gophish to deliver new PowerRAT and DCRAT

Cisco Talos recently discovered a phishing campaign using an open-source phishing toolkit called Gophish by an unknown threat actor. The campaign involves modular infection chains that are either Maldoc or HTML-based infections and require the victim's intervention to trigger the infection chain...

8.4AI score

Exploits0

Microsoft CVE•added 2024/08/22 7:0 a.m.•30 views

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

...

6.3CVSS7.1AI score0.00274EPSS

Exploits0

OSV•added 2024/08/12 1:38 p.m.•1 views

CVE-2024-38218

Microsoft Edge HTML-based Memory Corruption Vulnerability...

7.8CVSS5.8AI score0.00533EPSS

Exploits0References1

NVD•added 2024/08/12 1:38 p.m.•31 views

CVE-2024-38218

Microsoft Edge HTML-based Memory Corruption Vulnerability...

8.4CVSS0.00533EPSS

Exploits0References1

Cvelist•added 2024/08/08 8:45 p.m.•32 views

CVE-2024-38218 Microsoft Edge (HTML-based) Memory Corruption Vulnerability

...

8.4CVSS0.00533EPSS

Exploits0References1

NVD•added 2024/03/04 10:15 p.m.•6 views

CVE-2023-41827

An improper export vulnerability was reported in the Motorola OTA update application, that could allow a malicious, local application to inject an HTML-based message on screen UI...

5.1CVSS5.1AI score0.00065EPSS

Exploits0References1

Cvelist•added 2024/03/04 9:44 p.m.•10 views

CVE-2023-41827

An improper export vulnerability was reported in the Motorola OTA update application, that could allow a malicious, local application to inject an HTML-based message on screen UI...

5.1CVSS5.4AI score0.00065EPSS

Exploits0References1

Github Security Blog•added 2022/05/24 5:18 p.m.•21 views

ChakraCore Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'...

7.6CVSS7.1AI score0.03843EPSS

Exploits0References5Affected Software1

OSV•added 2022/05/24 5:14 p.m.•20 views

GHSA-JR84-P554-62PM ChakraCore RCE Vulnerability

7.5CVSS7.8AI score0.38317EPSS

Exploits0References5

Github Security Blog•added 2022/05/24 5:10 p.m.•20 views

ChakraCore RCE Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-basedL, aka Chakra Scripting Engine Memory Corruption Vulnerability. This CVE ID is unique from CVE-2020-0811...

7.6CVSS7.2AI score0.03426EPSS

Exploits0References5Affected Software1

CVE•added 2021/01/12 7:42 p.m.•115 views

CVE-2021-1705

Technical details about CVE-2021-1705 are not publicly available in the provided documents. Monitoring for updates is recommended.

7.6CVSS6.1AI score0.01249EPSS

Exploits0References2Affected Software1

CVE•added 2020/08/17 7:13 p.m.•138 views

CVE-2020-1555

CVE-2020-1555 is a memory corruption vulnerability in the Edge HTML-based scripting engine. The vulnerability allows an attacker to execute arbitrary code in the context of the current user, with the potential for full system compromise if the user has admin rights. The issue stems from how the E...

9.3CVSS9.1AI score0.1447EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2020/08/11 12:0 a.m.•54 views

KB4571709: Windows 10 Version 1803 August 2020 Security Update

The remote Windows host is missing security update 4571709. It is, therefore, affected by multiple vulnerabilities : - A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could instal...

9.3CVSS8.2AI score0.91733EPSS

Exploits11References86

Microsoft CVE•added 2020/05/12 7:0 a.m.•18 views

Chakra Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.4AI score0.03843EPSS

Exploits0

NVD•added 2019/11/12 7:15 p.m.•17 views

CVE-2019-1427

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, CVE-2019-1428, CVE-2019-1429...

7.6CVSS7.5AI score0.06916EPSS

Exploits2References1

Microsoft CVE•added 2019/09/10 7:0 a.m.•34 views

Chakra Scripting Engine Memory Corruption Vulnerability

7.6CVSS1.4AI score0.03843EPSS

Exploits0

NVD•added 2019/08/14 9:15 p.m.•12 views

CVE-2019-1196

7.6CVSS6.8AI score0.01327EPSS

Exploits0References1

Rows per page