CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Snyk•added 2026/05/08 4:54 p.m.•5 views

Cross-site Scripting (XSS)

Overview prestashop/prestashop is an Open Source e-commerce platform, committed to providing the best shopping cart experience for both merchants and customers. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the Customer Service view process. An attacker can...

9.3CVSS5.8AI score0.00022EPSS

Exploits0References2

NVD•added 2026/04/12 1:16 p.m.•1 views

CVE-2019-25695

R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the...

8.6CVSS0.00007EPSS

Exploits0References3

EUVD•added 2026/03/11 9:31 p.m.•2 views

EUVD-2019-19734

SpotIE Internet Explorer Password Recovery 2.9.5 contains a denial of service vulnerability in the registration key input field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a 256-character payload into the Key field during...

6.9CVSS6.1AI score0.00019EPSS

Exploits0References3

NVD•added 2026/02/12 11:16 p.m.•2 views

CVE-2019-25330

SurfOffline Professional 2.2.0.103 contains a structured exception handler SEH overflow vulnerability that allows attackers to crash the application by manipulating the project name input. Attackers can generate a malicious payload of 382 'A' characters followed by specific byte sequences to...

7.5CVSS0.00041EPSS

Exploits0References4

Debian CVE•added 2026/01/30 10:7 p.m.•4 views

CVE-2020-37038

Removed by vendor...

7.5CVSS5.8AI score0.00027EPSS

Exploits0

CVE•added 2026/01/30 10:7 p.m.•8 views

CVE-2020-37038

CVE-2020-37038 affects Code Blocks 20.03. A denial-of-service vulnerability allows an attacker to crash the application by manipulating input in the FSymbols search field; sending a large payload (approximately 5000 repeated characters) triggers the crash. The connected sources reiterate the same...

7.5CVSS5.9AI score0.00027EPSS

Exploits0References4

ATTACKERKB•added 2026/01/30 10:7 p.m.•9 views

CVE-2020-37038

Code Blocks 20.03 contains a denial of service vulnerability that allows attackers to crash the application by manipulating input in the FSymbols search field. Attackers can paste a large payload of 5000 repeated characters into the search field to trigger an application crash...

7.5CVSS5.9AI score0.00027EPSS

Exploits0References4Affected Software1

EUVD•added 2026/01/21 5:27 p.m.•3 views

EUVD-2026-3645

GeoGebra Graphing Calculator 6.0.631.0 contains a denial of service vulnerability that allows attackers to crash the application by inputting an oversized buffer. Attackers can generate a payload of 8000 repeated characters to overwhelm the input field and cause the application to become...

7.5CVSS5.5AI score0.00095EPSS

Exploits0References4

OSV•added 2022/11/01 2:15 p.m.•2 views

CVE-2022-43084

A cross-site scripting XSS vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the vname parameter...

4.8CVSS5.9AI score

Exploits0References1

exploitpack•added 2019/02/12 12:0 a.m.•22 views

LayerBB 1.1.2 - Cross-Site Scripting

LayerBB 1.1.2 - Cross-Site Scripting Exploit Title: LayerBB 1.1.2 - Cross-Site Scripting Date: 11/19/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=28 Version: 1.1.2 Tested on: Ubuntu 18.04 CVE: CVE-2019-7688 1...

6.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by