CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-39461417a6 advisory. cve fixes Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for thes...

9.8CVSS7.3AI score0.64893EPSS

Exploits3References3

OpenVAS•added 2025/09/30 12:0 a.m.•4 views

Ubuntu: Security Advisory (USN-7783-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.0075EPSS

Exploits2References2

CVE•added 2025/09/29 12:0 a.m.•13 views

CVE-2025-56795

CVE-2025-56795 affects Mealie 3.0.1 and earlier, with a stored XSS in the recipe creation feature. Unsanitized input in the note/text fields of the path “/api/recipes/{recipe_name}” is rendered in the frontend without proper escaping, causing persistent XSS. Root cause: lack of input sanitization...

9CVSS5.1AI score0.00332EPSS

Exploits2References3Affected Software1

Positive Technologies•added 2025/09/29 12:0 a.m.•3 views

PT-2025-39839

Name of the Vulnerable Software and Affected Versions Mealie versions prior to 3.0.1 Description The software is susceptible to Cross-Site Scripting XSS within the recipe creation feature. User-provided data in the "note" and "text" fields is not adequately sanitized before being displayed on the...

9CVSS5.7AI score0.00332EPSS

Exploits2References9

Tenable Nessus•added 2025/09/29 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-10925

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

7.8CVSS8AI score0.02434EPSS

Exploits0References3

Positive Technologies•added 2025/09/27 12:0 a.m.•4 views

PT-2025-39711

Name of the Vulnerable Software and Affected Versions algoliasearch-helper versions 2.0.0-rc1 through 3.11.2 Description The package contains a Prototype Pollution issue in the merge function within the merge.js file. This allows modification of the constructor.prototype, potentially leading to...

7.5CVSS9.7AI score0.00471EPSS

Exploits1References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by