CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1445 matches found

Positive Technologies•added 2025/11/07 12:0 a.m.•3 views

PT-2025-45527

Name of the Vulnerable Software and Affected Versions Open WebUI versions 0.6.34 and below Description Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. A stored DOM XSS issue exists in the functionality that inserts custom prompts into the chat...

8.7CVSS7.4AI score0.00011EPSS

Exploits2References30

Redos•added 2025/11/06 12:0 a.m.•4 views

ROS-20251106-07

A vulnerability in the phpMyAdmin database administration web application is related to an XSS vulnerability in the table validation function. XSS vulnerability for the table validation feature. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code ...

6.4CVSS7.2AI score0.00305EPSS

Exploits0

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989436)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989436 advisory. In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipcskcreate Free sk in case tipcskinsert fails. Tenable...

5.5CVSS6.1AI score0.00008EPSS

Exploits0References4

RedhatCVE•added 2025/11/01 12:4 p.m.•2 views

CVE-2025-64356

Missing Authorization vulnerability in f1logic Insert PHP Code Snippet insert-php-code-snippet allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Insert PHP Code Snippet: from n/a through = 1.4.3...

4.3CVSS7.2AI score0.00056EPSS

Exploits0References1

EUVD•added 2025/10/31 12:30 p.m.•1 views

EUVD-2025-37337

4.3CVSS6.6AI score0.00056EPSS

Exploits0References2

Vulnrichment•added 2025/10/31 11:42 a.m.•2 views

CVE-2025-64356 WordPress Insert PHP Code Snippet plugin <= 1.4.3 - Broken Access Control vulnerability

4.3CVSS6.8AI score0.00056EPSS

Exploits0References1

Positive Technologies•added 2025/10/31 12:0 a.m.•3 views

PT-2025-44607

Name of the Vulnerable Software and Affected Versions Insert PHP Code Snippet versions through 1.4.3 Description A missing authorization flaw exists in f1logic Insert PHP Code Snippet’s insert-php-code-snippet functionality. This issue stems from incorrectly configured access control security...

4.3CVSS6.4AI score0.00056EPSS

Exploits0References4

Tenable Nessus•added 2025/10/24 12:0 a.m.•2 views

EulerOS 2.0 SP13 : glib2 (EulerOS-SA-2025-2257)

According to the versions of the glib2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the...

4.8CVSS6.7AI score0.00742EPSS

Exploits0References2

CVE•added 2025/10/08 2:32 p.m.•4 views

CVE-2025-11479

The CVE-2025-11479 affects SourceCodester Wedding Reservation Management System 1.0. The vulnerability is in the insertReservation function of function.php, caused by manipulation of the number argument leading to SQL injection. It can be exploited remotely and exploit details have been publicly ...

9.8CVSS7.3AI score0.00042EPSS

Exploits1References5Affected Software1

CNNVD•added 2025/10/08 12:0 a.m.•1 views

SourceCodester Wedding Reservation Management System SQL注入漏洞

SourceCodester Wedding Reservation Management System is a SourceCodester open source wedding reservation management system. SourceCodester Wedding Reservation Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the incorrect operation of the function...

9.8CVSS7.8AI score0.00042EPSS

Exploits1References5

OSV•added 2025/10/07 4:15 p.m.•0 views

UBUNTU-CVE-2023-53672

In the Linux kernel, the following vulnerability has been resolved: btrfs: output extra debug info if we failed to find an inline backref BUG Syzbot reported several warning triggered inside lookupinlineextentbackref. CAUSE As usual, the reproducer doesn't reliably trigger locally here, but at...

5.5CVSS5.9AI score0.00017EPSS

Exploits0References11