CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-14653

Malicious code in bioql PyPI...

9CVSS6.5AI score0.03417EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 10:41 a.m.•4 views

CVE-2024-46482

An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...

8.2CVSS7.9AI score0.00171EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:6 a.m.•3 views

CVE-2024-51377

An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk On-Premise and Cloud 9.2.0 allows a remote attacker to execute arbitrary code via the Subject and Identifier fields...

8.8CVSS8AI score0.00346EPSS

Exploits1References1

RedhatCVE•added 2025/05/03 1:15 a.m.•10 views

CVE-2025-47154

LibJS in Ladybird before f5a6704 mishandles the freeing of the vector that argumentslist references, leading to a use-after-free, and allowing remote attackers to execute arbitrary code via a crafted .js file. NOTE: the GitHub README says "Ladybird is in a pre-alpha state, and only suitable for u...

9CVSS8.2AI score0.03417EPSS

Exploits0References1

NVD•added 2025/05/01 8:15 a.m.•12 views

CVE-2025-47154

9CVSS0.03417EPSS

Exploits0References3

OSV•added 2025/05/01 8:15 a.m.•4 views

CVE-2025-47154

9CVSS7.8AI score

Exploits0References3

Cvelist•added 2025/05/01 12:0 a.m.•11 views

CVE-2025-47154

9CVSS0.03417EPSS

Exploits0References3

CVE•added 2025/05/01 12:0 a.m.•59 views

CVE-2025-47154

CVE-2025-47154 affects the LibJS component of the Ladybird browser, specifically versions prior to f5a6704. The root cause is improper freeing of the vector referenced by arguments_list, causing a use-after-free. This can allow remote attackers to execute arbitrary code by feeding a crafted .js f...

9CVSS9.3AI score0.03417EPSS

Exploits0References3

CNNVD•added 2025/05/01 12:0 a.m.•2 views

Ladybird 安全漏洞

Ladybird is a truly standalone web browser from Ladybird Open Source. A security vulnerability exists in versions prior to Ladybird f5a6704, which stems from improper release of vectors referenced by argumentslist, which could lead to post-release reuse and arbitrary code execution...

9CVSS7.3AI score0.03417EPSS

Exploits0References3

Positive Technologies•added 2025/05/01 12:0 a.m.•3 views

PT-2025-18373 · Ladybird · Ladybird

Name of the Vulnerable Software and Affected Versions: Ladybird versions prior to f5a6704 Description: The issue is related to a use-after-free vulnerability in LibJS, which is part of the Ladybird browser engine. This vulnerability allows remote attackers to execute arbitrary code via a crafted...

9CVSS7.8AI score0.03417EPSS

Exploits0References20

Vulnrichment•added 2025/05/01 12:0 a.m.•5 views

CVE-2025-47154

9CVSS8.2AI score0.03417EPSS

Exploits0References3

OSV•added 2024/11/01 4:15 p.m.•1 views

CVE-2024-51377

An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk On-Premise and Cloud 9.2.0 allows a remote attacker to execute arbitrary code via the Subject and Identifier fields...

5.4CVSS6.1AI score0.00346EPSS

Exploits1References2

CVE•added 2024/11/01 12:0 a.m.•55 views

CVE-2024-51377

CVE-2024-51377 affects Ladybird Web Solution Faveo Helpdesk & Servicedesk (On-Premise and Cloud) v9.2.0. The issue allows a remote attacker to execute arbitrary code via the Subject and Identifier fields. In the connected sources, the vulnerability is documented across multiple feeds (including R...

8.8CVSS8AI score0.00346EPSS

Exploits1References2Affected Software1

Cvelist•added 2024/11/01 12:0 a.m.•17 views

CVE-2024-51377

An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk On-Premise and Cloud 9.2.0 allows a remote attacker to execute arbitrary code via the Subject and Identifier fields...

0.00346EPSS

Exploits1References2

NVD•added 2024/10/22 10:15 p.m.•16 views

CVE-2024-46482

8.2CVSS0.00171EPSS

Exploits0References1

Vulnrichment•added 2024/10/22 12:0 a.m.•9 views

CVE-2024-46482

7.8AI score0.00171EPSS

Exploits0References1

Cvelist•added 2024/10/22 12:0 a.m.•11 views

CVE-2024-46482

0.00171EPSS

Exploits0References1

Openbugbounty•added 2022/11/02 12:30 p.m.•11 views

ladybird-shop.jp Cross Site Scripting vulnerability OBB-3032623

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

The Hacker News•added 2021/01/28 9:23 a.m.•0 views

European Authorities Disrupt Emotet — World's Most Dangerous Malware

Law enforcement agencies from as many as eight countries dismantled the infrastructure of Emotet , a notorious email-based Windows malware behind several botnet-driven spam campaigns and ransomware attacks over the past decade. The coordinated takedown of the botnet on Tuesday — dubbed "Operation...

5.8AI score

Exploits0

The Hacker News•added 2021/01/28 9:23 a.m.•71 views

European Authorities Disrupt Emotet — World's Most Dangerous Malware

Law enforcement agencies from as many as eight countries dismantled the infrastructure of Emotet, a notorious email-based Windows malware behind several botnet-driven spam campaigns and ransomware attacks over the past decade. The coordinated takedown of the botnet on Tuesday — dubbed "Operation...

0.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by