CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-0595

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00362EPSS

Exploits1References5

vulnersOsv•added 2023/02/01 6:30 a.m.•3 views

grunt-yellowlabtools (>=0.0.1 <=1.2.1), install-is (>=1.4.0 <=1.4.2) +3 more potentially affected by CVE-2022-25906 via is-http2 (>=1.0.4 <=1.2.0)

is-http2 NPM version =1.0.4, =0.0.1, =1.4.0, =1.0.0, =1.10.0, =1.13.4 Source cves: CVE-2022-25906 Source advisory: OSV:GHSA-2275-RPF5-XV8H...

7.8CVSS7.1AI score0.00362EPSS

Exploits1

Vulnrichment•added 2023/02/01 5:0 a.m.•4 views

CVE-2022-25906

All versions of the package is-http2 are vulnerable to Command Injection due to missing input sanitization or other checks, and sandboxes being employed to the isH2 function...

7.4CVSS7.6AI score0.00362EPSS

Exploits1References2

vulnersOsv•added 2022/12/05 2:44 p.m.•2 views

grunt-yellowlabtools (>=0.0.1 <=1.2.1), install-is (>=1.4.0 <=1.4.2) +3 more potentially affected by CVE-2022-25906 via is-http2 (>=1.0.4 <=1.2.0)

is-http2 NPM version =1.0.4, =0.0.1, =1.4.0, =1.0.0, =1.10.0, =1.13.4 Source cves: CVE-2022-25906 Source advisory: SNYK:JS-ISHTTP2-3153878...

7.8CVSS7.1AI score0.00362EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by