CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

SUSE CVE•added 2025/06/07 1:57 a.m.•2 views

SUSE CVE-2025-49466

aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...

5.8CVSS7AI score0.00592EPSS

Exploits0References3

OSV•added 2025/06/05 3:15 a.m.•1 views

DEBIAN-CVE-2025-49466

aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...

5.8CVSS5.2AI score0.00592EPSS

Exploits0References1

CNNVD•added 2022/05/16 12:0 a.m.•2 views

WordPress plugin WPQA 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plug-in. An access control error vulnerability exists in versions of WordPress WPQA plugin prior to 5.2, whic...

4.3CVSS5.3AI score0.00756EPSS

Exploits1References2

CNVD•added 2016/11/04 12:0 a.m.•0 views

SQL Injection Vulnerability in Penta Digital Campus System folder Parameter

Penta Digital Campus System is using the technology platform of .NET+SqlServer. A SQL injection vulnerability exists in the /BG/Mail/UMessageView.aspx page of Pangda Digital Campus System. The lack of filtering of the 'folder' parameter allows an attacker to exploit the vulnerability to obtain...

7.7AI score

Exploits0References1

OSV•added 2014/07/14 2:55 p.m.•3 views

DEBIAN-CVE-2014-4945

Multiple cross-site scripting XSS vulnerabilities in Horde Internet Mail Program IMP before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via an unspecified flag in the basic 1 mailbox or 2 message view...

4.3CVSS6AI score0.01312EPSS

Exploits0References1