CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/11/07 6:15 p.m.•1 views

CVE-2025-63716

6.5CVSS5.8AI score0.00028EPSS

NVD•added 2025/11/07 6:15 p.m.•1 views

CVE-2025-63716

6.5CVSS0.00028EPSS

Cvelist•added 2025/11/07 12:0 a.m.•4 views

CVE-2025-63716

0.00028EPSS

CNNVD•added 2025/11/07 12:0 a.m.•1 views

SourceCodester Leads Manager Tool 安全漏洞

SourceCodester Leads Manager Tool is an open source leads management tool from SourceCodester. A security vulnerability exists in SourceCodester Leads Manager Tool version 1.0, which stems from the lack of a CSRF protection mechanism that could lead to cross-site request forgery attacks...

6.5CVSS6.6AI score0.00028EPSS

Vulnrichment•added 2025/11/07 12:0 a.m.•1 views

CVE-2025-63716

6.5AI score0.00028EPSS

CVE•added 2025/11/07 12:0 a.m.•7 views

CVE-2025-63716

The CVE-2025-63716 entry concerns SourceCodester Leads Manager Tool v1.0, which is vulnerable to Cross-Site Request Forgery (CSRF). The root cause stated across sources is lack of CSRF protection mechanisms (no anti-CSRF tokens and no same-origin verification) on critical endpoints, enabling unau...

6.5CVSS6.6AI score0.00028EPSS

Exploits1References2Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48531

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00154EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-48530

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.0015EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48782

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00129EPSS

RedhatCVE•added 2025/05/23 10:29 a.m.•4 views

CVE-2024-7942

A vulnerability has been found in SourceCodester Leads Manager Tool 1.0 and classified as problematic. This vulnerability affects unknown code of the file update-leads.php. The manipulation of the argument phonenumber leads to cross site scripting. The attack can be initiated remotely. The exploi...

5.4CVSS6.4AI score0.00129EPSS

RedhatCVE•added 2025/05/23 9:51 a.m.•5 views

CVE-2024-7644

A vulnerability was found in SourceCodester Leads Manager Tool 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/add-leads.php of the component Add Leads Handler. The manipulation of the argument leadsname/phonenumber leads to cross site scripting. It ...

5.4CVSS5.2AI score0.00154EPSS

RedhatCVE•added 2025/05/23 9:49 a.m.•5 views

CVE-2024-7643

A vulnerability was found in SourceCodester Leads Manager Tool 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /endpoint/delete-leads.php of the component Delete Leads Handler. The manipulation of the argument leads leads to sql injection. The atta...

9.8CVSS9.7AI score0.0015EPSS

OSV•added 2024/08/20 1:15 a.m.•0 views

CVE-2024-7942

5.4CVSS3.8AI score

Exploits0References4

NVD•added 2024/08/20 1:15 a.m.•11 views

CVE-2024-7942

5.4CVSS0.00129EPSS

CVE•added 2024/08/20 12:0 a.m.•65 views

CVE-2024-7942

CVE-2024-7942 affects SourceCodester Leads Manager Tool 1.0, specifically the update-leads.php file. The vulnerability is a cross-site scripting (XSS) issue triggered by a manipulated phone_number argument and can be exploited remotely. The public exploit is noted in multiple references. The conn...

5.4CVSS6.6AI score0.00129EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2024/08/20 12:0 a.m.•11 views

CVE-2024-7942 SourceCodester Leads Manager Tool update-leads.php cross site scripting

5.3CVSS6.4AI score0.00129EPSS

Cvelist•added 2024/08/20 12:0 a.m.•12 views

CVE-2024-7942 SourceCodester Leads Manager Tool update-leads.php cross site scripting

5.3CVSS0.00129EPSS