CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Fedora•added 2026/01/08 1:28 a.m.•4 views

[SECURITY] Fedora 43 Update: python-pdfminer-20251230-1.fc43

Fedora•added 2025/11/17 3:36 a.m.•5 views

[SECURITY] Fedora 41 Update: python-pdfminer-20240706-3.fc41

Fedora•added 2025/11/17 2:59 a.m.•5 views

[SECURITY] Fedora 42 Update: python-pdfminer-20240706-4.fc42

Fedora•added 2025/11/17 2:47 a.m.•5 views

[SECURITY] Fedora 43 Update: python-pdfminer-20251107-1.fc43

CNNVD•added 2024/12/31 12:0 a.m.•2 views

Red Hat OpenShift 安全漏洞

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat USA that supports building, testing, deploying and running applications. A security vulnerability exists in Red Hat OpenShift. An attacker can exploit the vulnerability to cause a denial of service by modifyin...

7.6CVSS7.2AI score0.00508EPSS

Huntr•added 2024/11/01 1:30 a.m.•4 views

Server Side Request Forgery(SSRF) on WordExtractor in langgenius/dify

Summary The vulnerability occurs when uploading DOCX files in the "Create Knowledge" section. If an external relationship exists in the DOCX file, the reltype value is requested as a URL. Requests are sent using the 'requests' module instead of the 'ssrfproxy', which can lead to an SSRF...

6.5CVSS6.8AI score0.00291EPSS

Microsoft CVE•added 2022/10/22 7:0 a.m.•2 views

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection tools/tiffcrop.c:6860 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 236b7191.

...

6.5CVSS7.1AI score0.00028EPSS

Amazon•added 2021/11/18 12:0 a.m.•3 views

Medium: containerd

Issue Overview: A flaw was found in containerd where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host's filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to...

6.8CVSS6.7AI score0.00071EPSS

Exploits2

OSV•added 2021/05/14 9:15 p.m.•1 views

CVE-2020-27833

A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image .tar file which contains symbolic links. The vulnerability is limited to the command oc image extract. If a symbolic link is first...

7.1CVSS7.4AI score0.00098EPSS

Hacker One•added 2019/03/11 11:40 p.m.•8 views

50m-ctf: @ajxchapman 50m-ctf writeup

50m-ctf writeup TL;DR Flag is c8889970d9fb722066f31e804e351993, thanks for the challenge! Introduction My goal for this CTF was to primarily use tools and scripts that I had personally written to complete it. Throughout this challenge I used and extended my personal toolkit extensively. All the...

8.2AI score

Exploits0

Kitploit•added 2019/03/01 8:6 p.m.•310 views

Imago Forensics - Imago Is A Python Tool That Extract Digital Evidences From Images

Imago is a python tool that extract digital evidences from images recursively. This tool is useful throughout a digital forensic investigation. If you need to extract digital evidences and you have a lot of images, through this tool you will be able to compare them easily. Imago allows to extract...

6.9AI score

Exploits0References3

Cvelist•added 2018/01/24 3:0 p.m.•10 views

CVE-2018-6017

Unencrypted transmission of images in Tinder iOS app and Tinder Android app allows an attacker to extract private sensitive information by sniffing network traffic...

8.6AI score0.00136EPSS

OSV•added 2017/11/09 6:29 p.m.•0 views

CVE-2017-16711

The swfDefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash because of extractDefinitions in lib/readers/swf.c and filllinebitmap...

5.5CVSS5.8AI score