CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2011-0719

Malware in sbrugna...

5.9CVSS5.9AI score0.00453EPSS

Exploits0References3

Hacker One•added 2025/10/04 1:4 p.m.•6 views

Lovable VDP: Users can change project visibility which requires high subscription by just changing request body

A Broken Access Control vulnerability was discovered that allowed users to change project visibility to higher subscription tiers by modifying the request body. The visibility was changed from the default setting to Personal or Workspace, bypassing subscription checks and enabling unauthorized...

5.8AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-21873

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0026EPSS

Exploits0References4

RedhatCVE•added 2025/03/31 9:38 p.m.•11 views

CVE-2024-24454

An invalid memory access when handling the ProtocolIEID field of E-RAB Modify Request messages in Athonet vEPC MME v11.4.0 allows attackers to cause a Denial of Service DoS to the cellular network by repeatedly initiating connections and sending a crafted payload...

5.9CVSS6.9AI score0.0026EPSS

Exploits0References1

Vulnrichment•added 2024/11/15 12:0 a.m.•8 views

CVE-2024-24454

5.9CVSS5.7AI score0.0026EPSS

Exploits0References1

Cvelist•added 2024/11/15 12:0 a.m.•12 views

CVE-2024-24454

5.9CVSS0.0026EPSS

Exploits0References1

CVE•added 2024/11/15 12:0 a.m.•52 views

CVE-2024-24454

CVE-2024-24454 affects Hewlett Packard Enterprise Athonet vEPC MME v11.4.0. The vulnerability is an invalid memory access in the handling of ProtocolIE_ID in E-RAB Modify Request messages, which can allow an attacker to cause a Denial of Service to the cellular network by repeatedly initiating co...

5.9CVSS5.7AI score0.0026EPSS

Exploits0References1

CNNVD•added 2023/05/04 12:0 a.m.•2 views

Dell EMC ECS 数据伪造问题漏洞

The Dell EMC ECS is a storage device from Dell USA. A cryptographic issue vulnerability exists in Dell EMC ECS versions prior to 3.8.0.2, which stems from incorrect validation of cryptographic signatures. An attacker exploiting this vulnerability could modify the subject data of a request...

7.5CVSS6.6AI score0.00116EPSS

Exploits0References2

RedHat Linux•added 2022/11/08 10:22 a.m.•3 views

samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request

A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl...

5.4CVSS6.7AI score0.00368EPSS

Exploits0References5

Veracode•added 2022/08/02 6:8 a.m.•16 views

Path Traversal

org.dspace:dspace-jspui is vulnerable to path traversal. The vulnerability exists due to the resumable upload implementations in SubmissionController and FileUploadRequest components, which allows an attacker to modify request parameters during submission and create files or directories anywhere ...

8.2CVSS6.8AI score0.0083EPSS

Exploits0References3Affected Software1

RedHat Linux•added 2021/08/25 9:37 a.m.•2 views

envoyproxy/envoy: denial of service when using extensions that modify request or response sizes

An out-of-bounds memory read vulnerability was found in envoyproxy/envoy. When using one of the following envoy extensions, it is possible to modify and increase the request or response body size of the following: the decompressor, json-transcoder, grpc-web, or other proprietary extensions. This...

8.6CVSS5.8AI score0.00073EPSS

Exploits0References5

wpexploit•added 2021/07/23 12:0 a.m.•163 views

GTranslate < 2.8.65 - Reflected Cross-Site Scripting (XSS)

In the Pro and Enterprise versions of GTranslate alert123;...

4.3CVSS1.6AI score0.02674EPSS

Exploits2References1

CNNVD•added 2021/03/19 12:0 a.m.•2 views

Minio MinIO 安全漏洞

Minio MinIO is an open source object storage server from the US-based MinIO Minio. The product supports building infrastructures for machine learning, analytics, and application data workloads. A security vulnerability exists in MinIO that allows MITM to modify the request body to skip this check...

6.5CVSS6.3AI score0.00385EPSS

Exploits1References4

Prion•added 2018/11/28 3:29 p.m.•14 views

Buffer overflow

Buffer overread while decoding PDP modify request or network initiated secondary PDP activation in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, ...

6.1CVSS6.8AI score0.00135EPSS

Exploits0References2

OSV•added 2018/05/04 8:29 p.m.•0 views

UBUNTU-CVE-2011-0704

389 Directory Server 1.2.7.5, when built with mozldap, allows remote attackers to cause a denial of service replica crash by sending an empty modify request...

5.9CVSS6.3AI score0.00453EPSS

Exploits0References4

NVD•added 2018/05/04 8:29 p.m.•14 views

CVE-2011-0704

389 Directory Server 1.2.7.5, when built with mozldap, allows remote attackers to cause a denial of service replica crash by sending an empty modify request...

5.9CVSS5.7AI score0.00453EPSS

Exploits0References2

OSV•added 2018/03/24 6:29 p.m.•0 views

CVE-2018-8967

An issue was discovered in zzcms 8.2. It allows SQL injection via the id parameter in an adv2.php?action=modify request...

9.8CVSS5.8AI score

Exploits0References1

Cvelist•added 2016/04/08 2:0 p.m.•13 views

CVE-2016-3187

The Prepopulate module 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to modify the REQUEST superglobal array, and consequently have unspecified impact, via a base64-encoded pp parameter...

7.4AI score0.0053EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by