CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

431 matches found

EUVD•added 2026/04/22 8:1 p.m.•4 views

EUVD-2026-25081

EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, EspoCRM's built-in formula scripting engine allowing updating attachment's sourceId thus allowing an authenticated admin to overwrite the sourceId field on Attachment entities. Because sourceId is...

9.1CVSS5.8AI score0.00078EPSS

Exploits3References1

CNNVD•added 2026/04/22 12:0 a.m.•3 views

EspoCRM 路径遍历漏洞

EspoCRM is an open-source, web-based Customer Relationship Management system CRM developed by EspoCRM. This system offers features such as sales automation, community management, and customer support. Versions of EspoCRM prior to 9.3.4 contained a path traversal vulnerability. This vulnerability...

9.1CVSS7.5AI score0.00078EPSS

Exploits3References1

Github Security Blog•added 2026/04/18 12:59 a.m.•3 views

PHPUnit has Argument injection via newline in PHP INI values that are forwarded to child processes

Impact PHPUnit forwards PHP INI settings to child processes used for isolated/PHPT test execution as -d name=value command-line arguments without neutralizing INI metacharacters. Because PHP's INI parser interprets " as a string delimiter, ; as the start of a comment, and most importantly a newli...

7.8CVSS6.6AI score0.00075EPSS

Exploits0References5Affected Software1

NVD•added 2026/04/01 1:16 a.m.•3 views

CVE-2025-71282

XenForo before 2.3.7 discloses filesystem paths through exception messages triggered by openbasedir restrictions. This allows an attacker to obtain information about the server's directory structure...

8.7CVSS0.00016EPSS

Exploits0References2

Cvelist•added 2026/04/01 12:30 a.m.•23 views

CVE-2025-71282 XenForo Path Disclosure via open_basedir Exceptions

8.7CVSS0.00016EPSS

Exploits0References2

CNNVD•added 2026/04/01 12:0 a.m.•1 views

Xenforo 安全漏洞

Xenforo is a forum software developed by the Xenforo company. Versions of XenForo prior to 2.3.7 contained security vulnerabilities. These vulnerabilities stemmed from abnormal messages triggered by the openbasedir limitation, which allowed the leakage of file system paths. This could potentially...

8.7CVSS5.8AI score0.00016EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-3391

Malware in sbrugna...

7.5CVSS9.2AI score0.09677EPSS

Exploits0References24

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-0158

Malware in sbrugna...

7.5CVSS6.1AI score0.00946EPSS

Exploits1References9