CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-30122

Malware in sbrugna...

9.8CVSS9.4AI score0.00418EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-1227

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00563EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 3:43 p.m.•5 views

CVE-2020-9296

Netflix Titus uses Java Bean Validation JSR 380 custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary data in the error message template being passe...

9.8CVSS6.8AI score0.00563EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:6 p.m.•2 views

CVE-2020-9297

Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java Bean Validation JSR 380 custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary...

9.8CVSS6.9AI score0.00418EPSS

Exploits0References1

Github Security Blog•added 2022/02/10 11:6 p.m.•70 views

Expression Language Injection in Netflix Conductor

Netflix Conductor uses Java Bean Validation JSR 380 custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary data in the error message template being...

9.8CVSS8.9AI score0.00563EPSS

Exploits0References4Affected Software1

OSV•added 2020/07/14 8:15 p.m.•1 views

CVE-2020-9297

9.8CVSS7.4AI score

Exploits0References1

NVD•added 2020/07/14 8:15 p.m.•13 views

CVE-2020-9297

9.8CVSS0.00418EPSS

Exploits0References1

Prion•added 2020/07/14 8:15 p.m.•9 views

Code injection

7.5CVSS9.3AI score0.00418EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/07/14 7:7 p.m.•13 views

CVE-2020-9297

9.4AI score0.00418EPSS

Exploits0References1

NVD•added 2020/06/16 2:15 p.m.•9 views

CVE-2020-9296

9.8CVSS0.00563EPSS

Exploits0References1

OSV•added 2020/06/16 2:15 p.m.•10 views

CVE-2020-9296

9.8CVSS6.8AI score

Exploits0References1

OSV•added 2020/05/04 1:15 p.m.•18 views

CVE-2020-1959

A Server-Side Template Injection was identified in Apache Syncope prior to 2.1.6 enabling attackers to inject arbitrary Java EL expressions, leading to an unauthenticated Remote Code Execution RCE vulnerability. Apache Syncope uses Java Bean Validation JSR 380 custom constraint validators. When...

9.8CVSS7.8AI score

Exploits0References1

Cvelist•added 2020/05/04 12:25 p.m.•12 views

CVE-2020-1959

9.9AI score0.01649EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by