CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-23540

Malicious code in bioql PyPI...

5CVSS5.3AI score0.00361EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 4:39 a.m.•4 views

CVE-2023-26128

All versions of the package keep-module-latest are vulnerable to Command Injection due to missing input sanitization or other checks and sandboxes being employed to the installModule function. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have...

8.4CVSS7.5AI score0.00182EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:20 a.m.•8 views

CVE-2019-17625

There is a stored XSS in Rambox 0.6.9 that can lead to code execution. The XSS is in the name field while adding/editing a service. The problem occurs due to incorrect sanitization of the name field when being processed and stored. This allows a user to craft a payload for Node.js and Electron,...

9CVSS6.5AI score0.04815EPSS

Exploits2References1

Tenable Nessus•added 2025/03/05 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2023-42282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses such as 0x7f.1 are improperly categorized as globally routable via isPublic...

9.8CVSS6.7AI score0.0067EPSS

Exploits1References2