CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

46 matches found

OSV•added 2026/01/29 2:16 p.m.•1 views

CVE-2026-1616

The $uri$args concatenation in nginx configuration file present in Open Security Issue Management OSIM prior v2025.9.0 allows path traversal attacks via query parameters...

7.5CVSS5.8AI score

Exploits0References1

Cvelist•added 2026/01/29 1:38 p.m.•30 views

CVE-2026-1616 osim: Path Traversal via query parameters in Nginx configuration

The $uri$args concatenation in nginx configuration file present in Open Security Issue Management OSIM prior v2025.9.0 allows path traversal attacks via query parameters...

7.5CVSS0.00025EPSS

Exploits0References1

Positive Technologies•added 2026/01/29 12:0 a.m.•4 views

PT-2026-5268

The $uri$args concatenation in nginx configuration file present in Open Security Issue Management OSIM prior v2025.9.0 allows path traversal attacks via query parameters...

7.5CVSS5.9AI score0.00025EPSS

Exploits0References2

CNNVD•added 2026/01/29 12:0 a.m.•2 views

Open Security Issue Management – Security Vulnerabilities

Open Security Issue Management is a web UI interface provided by Red Hat Product Security. Versions of Open Security Issue Management prior to v2025.9.0 contain security vulnerabilities. These vulnerabilities stem from improper concatenation of $uri$args in the nginx configuration file, which may...

7.5CVSS5.8AI score0.00025EPSS

Exploits0References1

RedhatCVE•added 2025/10/14 7:42 a.m.•2 views

CVE-2025-10557

A stored Cross-site Scripting XSS vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.5AI score0.00028EPSS

Exploits0References1

EUVD•added 2025/10/13 9:30 a.m.•1 views

EUVD-2025-34047

8.7CVSS6AI score0.00028EPSS

Exploits0References2

NVD•added 2025/10/13 8:15 a.m.•6 views

CVE-2025-10557

8.7CVSS0.00028EPSS

Exploits0References1

OSV•added 2025/10/13 8:15 a.m.•0 views

CVE-2025-10557

5.4CVSS6AI score0.00028EPSS

Exploits0References1

Vulnrichment•added 2025/10/13 7:36 a.m.•2 views

CVE-2025-10557 Stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

8.7CVSS6.1AI score0.00028EPSS

Exploits0References1

Cvelist•added 2025/10/13 7:36 a.m.•4 views

8.7CVSS0.00028EPSS

Exploits0References1

CVE•added 2025/10/13 7:36 a.m.•8 views

CVE-2025-10557

The CVE-2025-10557 entry concerns a stored Cross-site Scripting (XSS) vulnerability in ENOVIA Collaborative Industry Innovator’s Issue Management. Concrete details from connected sources show affected software as ENOVIA Collaborative Industry Innovator (3DEXPERIENCE) with vulnerable versions span...

8.7CVSS6.1AI score0.00028EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/10/13 12:0 a.m.•3 views

PT-2025-41767

Name of the Vulnerable Software and Affected Versions ENOVIA Collaborative Industry Innovator versions 3DEXPERIENCE R2022x through 3DEXPERIENCE R2025x Description A stored Cross-site Scripting XSS issue exists in the Issue Management component of ENOVIA Collaborative Industry Innovator. This allo...

8.7CVSS6.5AI score0.00028EPSS

Exploits0References5

CNNVD•added 2025/10/13 12:0 a.m.•2 views

Dassault Systèmes ENOVIA Specification Manager 安全漏洞

Dassault Systèmes ENOVIA Specification Manager is an application module for creating, managing and collaborating on product specifications from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Specification Manager versions R2022x through 3DEXPERIENCE R2025x,...

8.7CVSS6AI score0.00028EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-15773

Malware in sbrugna...

9.8CVSS9.2AI score0.00378EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-8937

Malware in sbrugna...

7.5CVSS7.4AI score0.00255EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-6583

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00352EPSS

Exploits0References2

OSV•added 2025/03/17 2:15 p.m.•2 views

CVE-2025-0601

A stored Cross-site Scripting XSS vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score

Exploits0References1

Fedora•added 2023/11/02 1:5 a.m.•12 views

[SECURITY] Fedora 37 Update: rt-5.0.5-1.fc37

RT is an enterprise-grade ticketing system which enables a group of people to intelligently and efficiently manage tasks, issues, and requests submitted by a community of users...

7.2AI score

Exploits0

Fedora•added 2023/10/31 1:17 a.m.•14 views

[SECURITY] Fedora 38 Update: rt-5.0.5-1.fc38

RT is an enterprise-grade ticketing system which enables a group of people to intelligently and efficiently manage tasks, issues, and requests submitted by a community of users...

7.2AI score

Exploits0

OSV•added 2022/11/03 12:0 a.m.•18 views

CVE-2022-39277 Cross-Site Scripting (XSS) in external links in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. External links are not properly sanitized and can therefore be used for a Cross-Site Scripting XSS...

4.5CVSS5.9AI score0.00309EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by