CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

ATTACKERKB•added 2026/04/05 8:45 p.m.•1 views

CVE-2019-25660

LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service...

6.9CVSS6.2AI score0.00005EPSS

Exploits1References3Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-23146

Malware in sbrugna...

6.1CVSS6.3AI score0.00468EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-0434

Malware in sbrugna...

10CVSS6.4AI score0.02191EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-1972

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00387EPSS

Exploits0References11

Tenable Nessus•added 2025/08/15 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2020-35474

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MediaWiki before 1.35.1, the combination of Html::rawElement and Message::text leads to XSS because the definition of...

6.1CVSS6.6AI score0.00468EPSS

Exploits1References2

OSV•added 2025/05/07 8:15 a.m.•0 views

CVE-2024-12120

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Countdown widget displaymessagetext parameter in all versions up to, and including, 1.7.1017 due to insufficient input sanitization and output escaping. This makes it possible for...

5.4CVSS5.9AI score0.00218EPSS

Exploits0References3

ATTACKERKB•added 2023/09/28 8:15 p.m.•2 views

CVE-2023-43323

mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, the server sends a HTTP and DNS request to external server. The Parameters effected are multiple - messageText, datawallphoto, datauserShareVideo and datauserShareLink...

6.5CVSS5.8AI score0.80804EPSS

Exploits2References3

OSV•added 2023/09/28 8:15 p.m.•2 views

CVE-2023-43323

6.5CVSS5.8AI score0.80804EPSS

Exploits2References1

Positive Technologies•added 2023/09/27 12:0 a.m.•3 views

PT-2023-28780 · Moosocial · Moosocial

Name of the Vulnerable Software and Affected Versions: mooSocial version 3.1.8 Description: The issue concerns external service interaction on the post function. When executed, the server sends HTTP and DNS requests to an external server. The parameters affected are multiple, including messageTex...

6.5CVSS7AI score0.80804EPSS

Exploits2References7

CNVD•added 2020/12/24 12:0 a.m.•4 views

MediaWiki cross-site scripting vulnerability (CNVD-2020-74054)

MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. It can be used to deploy in-house knowledge management and content management systems. MediaWiki before 1.35.1 suffers from a cross-site scripting vulnerability tha...

6.1CVSS6.2AI score0.00468EPSS

Exploits1References1

Veracode•added 2020/12/19 1:34 a.m.•20 views

Cross-site Scripting (XSS)

In MediaWiki before 1.35.1, the combination of Html::rawElement and Message::text leads to XSS because the definition of MediaWiki:recentchanges-legend-watchlistexpiry can be changed onwiki so that the output is raw HTML...

6.1CVSS0.5AI score0.00468EPSS

Exploits1References5Affected Software1

NVD•added 2020/12/18 8:15 a.m.•12 views

CVE-2020-35474

6.1CVSS6AI score0.00468EPSS

Exploits1References3

Prion•added 2020/12/18 8:15 a.m.•11 views

Design/Logic Flaw

4.3CVSS6AI score0.00468EPSS

Exploits1References3Affected Software2

Debian CVE•added 2020/12/18 7:30 a.m.•24 views

CVE-2020-35474

6.1CVSS6.2AI score0.00468EPSS

Exploits1

OpenVAS•added 2018/06/08 12:0 a.m.•38 views

Microsoft Windows: Interactive logon: Message text for users attempting to log on

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winilmessageusersattemptlogon.nasl 11098 2018-08-23 14:32:47Z emoss $ Check value for Interactive logon: Message text for users attempting to log on Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...

7.3AI score

Exploits0

NVD•added 2005/01/10 5:0 a.m.•8 views

CVE-2004-1214

Format string vulnerability in Kreed 1.05 and earlier allows remote attackers to execute arbitrary code via format specifiers in 1 a nickname or 2 message text...

10CVSS7.7AI score0.06994EPSS

Exploits1References3

Cvelist•added 2003/04/02 5:0 a.m.•11 views

CVE-2002-0437

Smsd in SMS Server Tools SMStools before 1.4.8 allows remote attackers to execute arbitrary commands via shell metacharacters backquotes in message text, as described with the term "string format vulnerability" by some sources...

7.7AI score0.02191EPSS

Exploits0References4