CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11535 matches found

EUVD•added 2025/10/06 6:50 a.m.•2 views

EUVD-2025-32498

When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other internal information. An attacker can thus obtain information about the technology used and the structure of the application...

4.3CVSS6.2AI score0.00083EPSS

Exploits0References7

Positive Technologies•added 2025/10/06 12:0 a.m.•2 views

PT-2025-40861

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. affected versions not specified Description The application reveals full stacktraces when errors occur. These stacktraces contain internal details like class and method names, potentially exposing...

4.3CVSS5.9AI score0.00083EPSS

Exploits0References11

Positive Technologies•added 2025/10/06 12:0 a.m.•3 views

PT-2025-40868

Name of the Vulnerable Software and Affected Versions Application affected versions not specified Description The application reveals full stacktraces to users when errors occur. These stacktraces contain internal details like class and method names, potentially exposing technology and applicatio...

2.7CVSS6.4AI score0.00078EPSS

Exploits0References10

CISA KEV Catalog•added 2025/10/06 12:0 a.m.•8 views

Mozilla Multiple Products Remote Code Execution Vulnerability

Mozilla Firefox, SeaMonkey, and Thunderbird contain an unspecified vulnerability when JavaScript is enabled. This allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of...

9.8CVSS8AI score0.86773EPSS

In wildExploits14

EUVD•added 2025/10/05 12:30 p.m.•2 views

EUVD-2025-32456

A vulnerability was determined in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. The impacted element is the function Save of the file src/main/java/com/zhiliao/common/template/TemplateFileServiceImpl.java of the component Template Management Page. This manipulation causes cro...

4.8CVSS5.4AI score0.00029EPSS

Exploits1References5

Packet Storm News•added 2025/10/05 12:0 a.m.•2 views

Selecting Cybersecurity Requirements: Effects of LLM Use and Professional Software Development Experience

This study investigates how access to Large Language Models LLMs and varying levels of professional software development experience affect the prioritization of cybersecurity requirements for web applications. Twenty-three postgraduate students participated in a research study to prioritize...

6.8AI score

Exploits0

EUVD•added 2025/10/04 9:30 p.m.•4 views

EUVD-2025-32435

A vulnerability has been found in SeriaWei ZKEACMS up to 4.3. This affects the function Delete of the file src/ZKEACMS.Redirection/Controllers/UrlRedirectionController.cs of the component POST Request Handler. The manipulation leads to improper authorization. Remote exploitation of the attack is...

5.5CVSS6AI score0.00052EPSS

Exploits0References6

OSV•added 2025/10/04 12:11 a.m.•5 views

RLSA-2025:7419 Important: mod_auth_openidc security update

The modauthopenidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server. Security Fixes: modauthopenidc: modauthopenidc allows OIDCProviderAuthRequestMethod POSTs to leak...

7.5CVSS7.5AI score0.00357EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-2571

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00407EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-10264

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00012EPSS

Exploits0References2