CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

161 matches found

RedhatCVE•added 2026/04/27 7:23 p.m.•7 views

CVE-2026-7042

A flaw has been found in 666ghj MiroFish up to 0.1.2. This affects the function createapp of the file backend/app/init.py of the component REST API Endpoint. Executing a manipulation can lead to missing authentication. It is possible to launch the attack remotely. The exploit has been published a...

7.5CVSS7AI score0.00383EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:31 a.m.•4 views

CVE-2023-25473

Cross-Site Request Forgery CSRF vulnerability in Miro Mannino Flickr Justified Gallery plugin = 3.5 versions...

8.8CVSS7AI score0.00246EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2007-3678

Malware in sbrugna...

4.3CVSS6.4AI score0.01511EPSS

Exploits2References7

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29428

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00246EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2024-21202

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01288EPSS

Exploits2References4

OSSF Malicious Packages•added 2025/05/26 5:55 a.m.•3 views

Malicious code in miro-plugin-tag-crawler (npm)

The package communicates with a domain associated with malicious activity...

7AI score

Exploits0

OSV•added 2025/05/26 5:55 a.m.•2 views

MAL-2025-4569 Malicious code in miro-plugin-tag-crawler (npm)

The package communicates with a domain associated with malicious activity...

7.1AI score

Exploits0

RedhatCVE•added 2025/05/23 8:40 a.m.•7 views

CVE-2024-23746

Miro Desktop 0.8.18 on macOS allows local Electron code injection via a complex series of steps that might be usable in some environments bypass a kTCCServiceSystemPolicyAppBundles requirement via a file copy, an app.app/Contents rename, an asar modification, and a rename back to app.app/Contents...

9.8CVSS7AI score0.01288EPSS

Exploits2References1

OSSF Malicious Packages•added 2025/03/25 8:48 a.m.•2 views

Malicious code in miro-terms-banner-s3-uploader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03f414cb9ba131f7c282fb402bda0fd181018874345ee729525f90005f100e4e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

NVD•added 2024/02/02 2:15 a.m.•27 views

CVE-2024-23746

9.8CVSS9.1AI score0.01288EPSS

Exploits2References4

OSV•added 2024/02/02 2:15 a.m.•5 views

CVE-2024-23746

9.8CVSS5.8AI score0.01288EPSS

Exploits2References4

Prion•added 2024/02/02 2:15 a.m.•21 views

Code injection

Miro Desktop 0.8.18 on macOS allows code injection via a complex series of steps that might be usable in some environments bypass a kTCCServiceSystemPolicyAppBundles requirement via a file copy, an app.app/Contents rename, an asar modification, and a rename back to app.app/Contents...

7.5CVSS9.2AI score0.01288EPSS

Exploits2References4Affected Software1

Vulnrichment•added 2024/02/02 12:0 a.m.•3 views

CVE-2024-23746

9.3AI score0.01288EPSS

Exploits2References4

CVE•added 2024/02/02 12:0 a.m.•86 views

CVE-2024-23746

CVE-2024-23746 (Miro Desktop 0.8.18 on macOS) : Local Electron code injection is possible through a multi-step bypass of kTCCServiceSystemPolicyAppBundles (including a file copy, app.app/Contents rename, an asar modification, then a final rename). This is described across multiple sources as enab...

9.8CVSS8.9AI score0.01288EPSS

Exploits2References4Affected Software1

CNNVD•added 2024/02/02 12:0 a.m.•4 views

Miro Desktop Code Injection Vulnerability

Miro Desktop is a desktop application for team collaboration and remote work from Miro. A code injection vulnerability exists in Miro Desktop version 0.8.18 that stems from allowing Electron code injection...

9.8CVSS7.7AI score0.01288EPSS

Exploits2References5

BDU FSTEC•added 2024/02/02 12:0 a.m.•10 views

The vulnerability of the digital platform for Miro’s collaborative work with macOS operating systems arises from improper code generation management. This allows a hacker to execute arbitrary code.

The vulnerability of the digital platform for Miro’s collaborative work with macOS operating systems is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.01288EPSS

Exploits2References2Affected Software1

GithubExploit•added 2024/01/26 12:39 a.m.•51 views

Exploit for Code Injection in Miro

CVE-2024-23746 Miro Desktop 0.8.18 on macOS allows Electron co...

9.8CVSS9.4AI score0.01288EPSS

Exploits2

Positive Technologies•added 2024/01/26 12:0 a.m.•6 views

PT-2024-1419 · Miro · Miro Desktop

Name of the Vulnerable Software and Affected Versions: Miro Desktop version 0.8.18 Description: The issue is related to incorrect code generation management in the Miro digital collaboration platform on macOS, which may allow a remote attacker to execute arbitrary code. The exploitation involves ...

9.8CVSS7.8AI score0.01288EPSS

Exploits2References14

OSSF Malicious Packages•added 2023/08/15 1:48 a.m.•4 views

Malicious code in miro-api-clients (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 787331785bd7ba05994172e4c86d95681d3e2e53caf8660a6832eed760fbfb68 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References2

OSV•added 2023/07/18 12:15 p.m.•3 views

CVE-2023-25473

Cross-Site Request Forgery CSRF vulnerability in Miro Mannino Flickr Justified Gallery plugin = 3.5 versions...

8.8CVSS7.3AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by